VYPR

DNNArticle module

by DNN

CVEs (1)

  • CVE-2018-9126CriApr 4, 2018
    risk 0.71cvss 9.8epss 0.50

    The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI.