Security Advisory

CVE-2025-64094

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-28 21:44:31

Last updated 2025-10-29 14:52:01

Assigner GitHub_M

State PUBLISHED

Description

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to 10.1.1, sanitization of the content of uploaded SVG files was not covering all possible XSS scenarios. This vulnerability exists because of an incomplete fix for CVE-2025-48378. This vulnerability is fixed in 10.1.1.

← Browse all CVEs View on cve.org ↗