Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:nuget/DotNetNuke.Web@9.13.2
purl pkg:nuget/DotNetNuke.Web@9.13.2
Next non-vulnerable version 9.13.9
Latest non-vulnerable version 9.13.9
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-f55k-m678-vbfr
Aliases:
CVE-2025-48377
GHSA-79m3-rvx2-3qq9
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 9.13.9, a specially crafted URL may be constructed which can inject an XSS payload that is triggered by using some module actions. Version 9.13.9 fixes the issue.
9.13.9
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-12T20:02:14.829309+00:00 GitLab Importer Affected by VCID-f55k-m678-vbfr https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/DotNetNuke.Web/CVE-2025-48377.yml 38.6.0