CRITICAL🇵🇱 Wersja polska

CVE-2025-64095

CVSS 10.0v3.1pub. 2025-10-28upd. 2025-11-03

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to 10.1.1, the default HTML editor provider allows unauthenticated file uploads and images can overwrite existing files. An unauthenticated user can upload and replace existing files allowing defacing a website and combined with other issue, injection XSS payloads. This vulnerability is fixed in 10.1.1.

🤖 AI Analysis
How it works

The default HTML editor provider in DNN prior to version 10.1.1 does not require authentication for file uploads. An attacker can upload any file and overwrite existing resources on the server. Using this capability, an attacker can replace page content (defacement) or, in combination with other vulnerabilities, inject malicious XSS payloads into pages served to users.

Impact

An attacker can deface a website by overwriting existing files and, in combination with other vulnerabilities, execute an XSS attack on users visiting the service. The vulnerability may also serve as an entry point for further system compromise.

Mitigation & patch

Update DNN to version 10.1.1 or later, where the vulnerability has been fixed. Details are available in the vendor references: https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-3m8r-w7xg-jqvw

Who is affected

DNN (DotNetNuke) in all versions before 10.1.1

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Dnnsoftware Dotnetnuke

    APP
    Dnnsoftware
    < 10.1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
XSS
CWE
References

Related vulnerabilities

CVE-2026-24838CRITICAL9.1PL ✓ten sam produkt

DNN/DotNetNuke: XSS w tytule modułu umożliwia wykonanie skryptów

CVE-2025-59545CRITICAL9.0PL ✓ten sam produkt

XSS w module Prompt platformy DNN (DotNetNuke) — wykonanie skryptu

CVE-2015-2794CRITICAL9.8ten sam produkt

The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the application ...

CVE-2018-15811HIGH7.5⚠ KEVten sam produkt

DNN (aka DotNetNuke) 9.2 through 9.2.1 uses a weak encryption algorithm to protect input parameters.

CVE-2018-18325HIGH7.5⚠ KEVten sam produkt

DNN (aka DotNetNuke) 9.2 through 9.2.2 uses a weak encryption algorithm to protect input parameters. NOTE: thi...