Known vulnerabilities in DNN DotNetNuke

Known vulnerabilities in DNN DotNetNuke

Vendor: DNN

Website: https://www.dnnsoftware.com

Total Security Bulletins: 16

Security bulletins (16)

Secuity bulletin	Severity	Status	Published
SB2026012841: Multiple vulnerabilities in DotNetNuke	Low	Patched	28.01.2026
SB2025102935: Multiple vulnerabilities in DotNetNuke	High	Patched Public exploit	29.10.2025
SB2025102934: Stored cross-site scripting in DotNetNuke	Low	Patched	29.10.2025
SB2025092348: Multiple vulnerabilities in DotNetNuke	Medium	Patched	23.09.2025
SB20250716115: Multiple vulnerabilities in DotNetNuke	High	Patched Public exploit	16.07.2025
SB2022060215: Server-Side Request Forgery (SSRF) in DNN	Medium	Patched	02.06.2022
SB2020040630: Information disclosure in DNN DotNetNuke	Low	Patched	06.04.2020
SB2020030205: Multiple vulnerabilities in DNN (DotNetNuke)	Medium	Patched	02.03.2020
SB2020030204: Path traversal in DNN (DotNetNuke)	Medium	Patched	02.03.2020
SB2019093001: Stored cross-site scripting in DotNetNuke	Low	Patched Public exploit	30.09.2019
SB2019032134: Cross-site scripting in DNN DotNetNuke	Low	Patched	21.03.2019
SB2018070308: Server-Side Request Forgery (SSRF) in DNN DotNetNuke	Medium	Patched	03.07.2018
SB2017072022: Improper Authentication in DNN DotNetNuke	High	Patched Exploited	20.07.2017
SB2015052801: Improper access control in DotNetNuke	High	Patched Public exploit	28.05.2015
SB2014031202: Multiple vulnerabilities in DNN DotNetNuke	Medium	Patched	12.03.2014
SB2012041109: Multiple vulnerabilities in DNN DotNetNuke	Low	Patched	11.04.2012