Known Vulnerabilities for Dotnetnuke by Dnnsoftware
Listed below are 10 of the newest known vulnerabilities associated with "Dotnetnuke" by "Dnnsoftware".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40321 json | DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to versio... | Not Provided | 2026-04-17 | 2026-04-17 |
| CVE-2026-40306 json | DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. All new install... | Not Provided | 2026-04-17 | 2026-04-17 |
| CVE-2026-40305 json | DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Starting in ver... | Not Provided | 2026-04-17 | 2026-04-17 |
| CVE-2022-47053 json | An arbitrary file upload vulnerability in the Digital Assets Manager module of DNN Corp DotNetNuke v7.0.0 to v9.10.2 allows a... | 5.4 - MEDIUM | 2023-04-12 | 2023-04-19 |
| CVE-2022-2922 json | Relative Path Traversal in GitHub repository dnnsoftware/dnn.platform prior to 9.11.0. | 4.9 - MEDIUM | 2022-09-30 | 2022-10-04 |
| CVE-2021-40186 json | The AppCheck research team identified a Server-Side Request Forgery (SSRF) vulnerability within the DNN CMS platform, formerl... | 7.5 - HIGH | 2022-06-02 | 2022-06-09 |
| CVE-2021-31858 json | DotNetNuke (DNN) 9.9.1 CMS is vulnerable to a Stored Cross-Site Scripting vulnerability in the user profile biography section... | 5.4 - MEDIUM | 2022-07-20 | 2022-07-26 |
| CVE-2020-11585 json | There is an information disclosure issue in DNN (formerly DotNetNuke) 9.5 within the built-in Activity-Feed/Messaging/Userid/... | 4.3 - MEDIUM | 2020-04-06 | 2021-07-21 |
| CVE-2020-5188 json | DNN (formerly DotNetNuke) through 9.4.4 has Insecure Permissions. | 6.5 - MEDIUM | 2020-02-24 | 2023-11-07 |
| CVE-2020-5187 json | DNN (formerly DotNetNuke) through 9.4.4 allows Path Traversal (issue 2 of 2). | 8.8 - HIGH | 2020-02-24 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Dnnsoftware | Dotnetnuke | 9.5.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.5.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.5.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.4.4 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.4.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.1 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.1 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.3.0 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.2 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.1 | |||
| Application | Dnnsoftware | Dotnetnuke | 9.2.1 |