CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zldnn: >> Dnnarticle >> 11 Security Vulnerabilities

CVE-2018-9126

The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI.

CVSS Score

9.8

EPSS Score

0.837

Published

2018-04-04

Page 1

Vulnerabilities

Vulnerable Software

Zldnn: >> Dnnarticle >> 11 Security Vulnerabilities

Products

Pricing

Contact Us