Filtered by vendor Zldnn
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2018-9126 | 1 Zldnn | 1 Dnnarticle | 2024-11-21 | 5.0 MEDIUM | 9.8 CRITICAL |
The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI. | |||||
CVE-2013-5117 | 1 Zldnn | 1 Dnnarticle | 2024-11-21 | 7.5 HIGH | N/A |
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter. |