HomePentest-Tools.com Logo

DotNetNuke 2.0 - 4.8.4 Skin Files Security Bypass Vulnerability CVE-2008-7102

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

DotNetNuke is prone to a security bypass vulnerability.

Risk description

The vulnerability is caused due improper validation of user data passed via unspecified parameters before being used to load skin files. Successful exploitation could allows remote attackers to gain administrative privileges or compromise the affected system.

Recommendation

Update to version 4.9.0 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Aug 27, 2009
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available