Dotnetnuke < 9.11.0 Relative Path Traversal

medium Nessus Plugin ID 166132

Version 1.5

Jun 5, 2024, 1:32 PM

  • Required Scan configuration ("Enable cgi scanning" set to "True")

Plugin Feed: 202406051332

Version 1.4

Oct 9, 2023, 5:00 PM

  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")

Plugin Feed: 202310091700

Version 1.3

Nov 29, 2022, 4:20 PM

  • CVSS metrics ("CVSSv2 score" changed from "6.8" to "6.1")
  • Exploit attributes ("Exploit available" set to "False")
  • CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:S/C:C/I:N/A:N" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:N/A:N")

Plugin Feed: 202211291620

Version 1.2

Oct 17, 2022, 7:53 PM

  • Exploit attributes
  • CVSS temporal metrics

Plugin Feed: 202210171953

* Changelogs are generally available for changes made after Nov 1, 2022