CNNVD-202506-2846 Information

CNNVD ID

CNNVD-202506-2846

Related CVE

CVE-2025-52486

• CNNVD Published: 2025-06-21

Description (Chinese)

Dnn.Platform是Dnn Software开源的一个开源网络内容管理平台（CMS）。 DNN.PLATFORM 10.0.1之前版本存在跨站脚本漏洞，该漏洞源于URL内容清理不当，可能导致跨站脚本攻击。

Description (English)

Dnn. Platform is an open-source web content management platform (CMS) for the Dnn Software open source. The pre-DNN.PLATFORM version of 10.01 had a cross-site script loophole, which stemmed from the improper clean-up of URL content and could lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

跨站脚本

Published

2025-06-21

Last Modified

2026-02-24

References

https://github.com/dnnsoftware/Dnn.Platform/commit/74f6de68da1572c1d7e9c6e30e9f77f7c5596b1b https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-pf4h-vrv6-cmvr

Patch

https://github.com/dnnsoftware/Dnn.Platform/releases