DNN.PLATFORM

NuGet5 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting DNN.PLATFORMpage 1 of 1

CVE-2025-52485MEDIUMCVSS 5.4EG 5.4✓ Fixed in 10.0.1
2025-06-21
vulnerable: 7.2.0 ... 9.9.0 (8 versions)
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted request to inject scripts in the Activity Feed Attach…
CVE-2025-52486MEDIUMCVSS 6.1EG 6.1✓ Fixed in 10.0.1
2025-06-21
vulnerable: 7.2.0 ... 9.9.0 (8 versions)
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows specially crafted content in URLs to be used with TokenReplace and not be…
CVE-2025-52487HIGHCVSS 7.5EG 7.5✓ Fixed in 10.0.1
2025-06-21
vulnerable: 7.2.0 ... 9.9.0 (8 versions)
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 7.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted request or proxy to be created that could bypass the …
CVE-2025-52488HIGHCVSS 8.6EG 8.6✓ Fixed in 10.0.1
2025-06-21
vulnerable: 7.2.0 ... 9.9.0 (8 versions)
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose…
CVE-2025-64095CRITICALCVSS 10.0EG 10.0✓ Fixed in 10.1.1
2025-10-28
vulnerable: 7.2.0 ... 9.9.0 (8 versions)
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to 10.1.1, the default HTML editor provider allows unauthenticated file uploads and images can overwrite existing files. An…

Check whether DNN.PLATFORM is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for DNN.PLATFORM CVEs against the assets you own.

Start Free Scan →