Vulnerability Details CVE-2008-7101
Unspecified vulnerability in DotNetNuke 4.0 through 4.8.4 and 5.0 allows remote attackers to obtain sensitive information (portal number) by accessing the install wizard page via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/48344
- http://secunia.com/advisories/31893
- http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno22/tabid/1175/Default.aspx
- http://www.securityfocus.com/bid/31145
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45080
- http://osvdb.org/48344
- http://secunia.com/advisories/31893
- http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno22/tabid/1175/Default.aspx
- http://www.securityfocus.com/bid/31145
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45080
Products affected by CVE-2008-7101
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.0
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.3.5
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.4.1
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.2
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.4
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.5.5
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.6.0
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.6.1
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.6.2
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.7.0
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.0
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.1
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.2
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.3
-
cpe:2.3:a:dotnetnuke:dotnetnuke:4.8.4
-
cpe:2.3:a:dotnetnuke:dotnetnuke:5.0