Security Advisory

CVE-2025-48378

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-23 15:39:03

Last updated 2025-05-23 16:01:18

Assigner GitHub_M

State PUBLISHED

Description

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 9.13.9, uploaded SVG files could contain scripts and if rendered inline those scripts could run allowing XSS attacks. Version 9.13.9 fixes the issue.

← Browse all CVEs View on cve.org ↗