Search for packages
| purl | pkg:nuget/DotNetNuke.Core@7.0.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-ky3u-4syg-3yat
Aliases: CVE-2022-47053 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') An arbitrary file upload vulnerability in the Digital Assets Manager module of DNN Corp DotNetNuke v7.0.0 to v9.10.2 allows attackers to execute arbitrary code via a crafted SVG file. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-v2rm-dtdh-sbgx | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site scripting (XSS) vulnerability in the telerik HTML editor in DotNetNuke allows remote attackers to inject arbitrary web script or HTML via a message. |
CVE-2012-1036
|
| VCID-xueu-t4r4-gubs | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site scripting (XSS) vulnerability in DotNetNuke allows user-assisted remote attackers to inject arbitrary web script or HTML via a crafted URL containing text that is used within a modal popup. |
CVE-2012-1030
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-02T04:44:31.332579+00:00 | GitLab Importer | Affected by | VCID-ky3u-4syg-3yat | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/DotNetNuke.Core/CVE-2022-47053.yml | 38.6.0 |
| 2026-06-02T04:36:05.156492+00:00 | GitLab Importer | Fixing | VCID-v2rm-dtdh-sbgx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/DotNetNuke.Core/CVE-2012-1036.yml | 38.6.0 |
| 2026-06-02T04:36:05.124419+00:00 | GitLab Importer | Fixing | VCID-xueu-t4r4-gubs | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/DotNetNuke.Core/CVE-2012-1030.yml | 38.6.0 |