CVE-2015-1566

EPSS 0.25%

Moderate severity vulnerability that affects DotNetNuke.Core

Published: 10/16/2018Modified: 12/2/2024

Description

Cross-site scripting (XSS) vulnerability in DotNetNuke (DNN) before 7.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected packages (1)

NuGet/DotNetNuke.Corefrom 0, < 7.4.0

References (4)

ADVISORYhttps://github.com/advisories/GHSA-v76m-f5cx-8rg4
ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2015-1566
WEBhttp://secunia.com/advisories/62832
WEBhttp://www.dnnsoftware.com/platform/manage/security-center