CVE-2026-24838

Description

Module title supports richtext which could include scripts that would execute in certain scenarios.

Affected packages (1)

• NuGet/DotNetNuke.Corefrom 0, < 9.13.10

CVSS scores

References (5)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-24838
• PATCHhttps://github.com/dnnsoftware/Dnn.Platform
• WEBhttps://github.com/dnnsoftware/Dnn.Platform/commit/4a4bcbcdf3cedbf702816f8168c4d51bf688f7f6
• WEBhttps://github.com/dnnsoftware/Dnn.Platform/releases/tag/v10.2.0
• WEBhttps://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-w9pf-h6m6-v89h