CVE-2013-7335
published 2014-03-12CVE-2013-7335: Open redirect vulnerability in DotNetNuke (DNN) before 6.2.9 and 7.x before 7.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct…
PriorityP413medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.18%
63.7th percentile
Open redirect vulnerability in DotNetNuke (DNN) before 6.2.9 and 7.x before 7.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Affected
65 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dnnsoftware | dotnetnuke | <= 6.2.8 | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
| dnnsoftware | dotnetnuke | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
DotNetNuke up to 5.6.3 input validation (Nessus ID 70294 / BID-61809)
vuldb·2026-05-07·CVSS 4.3
CVE-2013-7335 [MEDIUM] DotNetNuke up to 5.6.3 input validation (Nessus ID 70294 / BID-61809)
A vulnerability marked as problematic has been reported in DotNetNuke. This issue affects some unknown processing. Performing a manipulation results in improper input validation.
This vulnerability is cataloged as CVE-2013-7335. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
OSV
DotNetNuke (DNN) Open redirect vulnerability
osv·2022-05-17
CVE-2013-7335 [MEDIUM] DotNetNuke (DNN) Open redirect vulnerability
DotNetNuke (DNN) Open redirect vulnerability
Open redirect vulnerability in DotNetNuke (DNN) before 6.2.9 and 7.x before 7.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
GHSA
DotNetNuke (DNN) Open redirect vulnerability
ghsa·2022-05-17
CVE-2013-7335 [MEDIUM] CWE-20 DotNetNuke (DNN) Open redirect vulnerability
DotNetNuke (DNN) Open redirect vulnerability
Open redirect vulnerability in DotNetNuke (DNN) before 6.2.9 and 7.x before 7.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2014-03-12
Published