Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2018-9126
- EPSS 83.31%
- Published 04.04.2018 19:29:00
- Last modified 21.11.2024 04:15:01
The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI.
7.5
CVE-2013-5117
- EPSS 1.69%
- Published 12.03.2014 14:55:30
- Last modified 12.04.2025 10:46:40
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
1