logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2018-18326

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2018-18326

Description:
DNN (aka DotNetNuke) 9.2 through 9.2.2 incorrectly converts encryption key source values, resulting in lower than expected entropy. NOTE: this issue exists because of an incomplete fix for CVE-2018-15812.
Last updated date:
03/03/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
08/27/2021
Reference url to background

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/dnn_cookie_deserialization_rce.rb

Type:
exploit
Confidence:
HIGH
Date of publishing:
03/03/2023
Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy