Security Advisory

CVE-2025-59535

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-22 20:59:03

Last updated 2025-09-23 20:12:28

Assigner GitHub_M

State PUBLISHED

Description

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 10.1.0, arbitrary themes can be loaded through query parameters. If an installed theme had a vulnerability, even if it was not used on any page, this could be loaded on unsuspecting clients without knowledge of the site owner. This issue has been patched in version 10.1.0.

← Browse all CVEs View on cve.org ↗