Zldnn Dnnarticle vulnerabilities
2 known vulnerabilities affecting zldnn/dnnarticle.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2018-9126P2CRITICALCVSS 9.8PoCv112018-04-04
CVE-2018-9126 [CRITICAL] CWE-200 CVE-2018-9126: The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.confi
The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI.
nvd
CVE-2013-5117P3HIGHCVSS 7.5PoC≤ 10.02014-03-12
CVE-2013-5117 [HIGH] CWE-89 CVE-2013-5117: SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module befo
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
nvd