Provides basic references to the DotNetNuke.dll to develop extensions for the DNN Platform. For MVC or WebAPI please see other packages available as well
Path to dependency file: /Modules/PageSettingsEditor/Upendo.Modules.PageSettingsEditor.csproj
Path to vulnerable library: /tmp/ws-ua_20230717013228_GHGMMD/dotnet_DIMSSU/20230717013228/DotNetNuke.Core.9.9.0/DotNetNuke.Core.9.9.0.nupkg,/tmp/ws-ua_20230717013228_GHGMMD/dotnet_DIMSSU/20230717013228/dotnetnuke.core/9.9.0/dotnetnuke.core.9.9.0.nupkg
CVE-2020-5188 - Medium Severity Vulnerability
Provides basic references to the DotNetNuke.dll to develop extensions for the DNN Platform. For MVC or WebAPI please see other packages available as well
Library home page: https://api.nuget.org/packages/dotnetnuke.core.9.9.0.nupkg
Path to dependency file: /Modules/PageSettingsEditor/Upendo.Modules.PageSettingsEditor.csproj
Path to vulnerable library: /tmp/ws-ua_20230717013228_GHGMMD/dotnet_DIMSSU/20230717013228/DotNetNuke.Core.9.9.0/DotNetNuke.Core.9.9.0.nupkg,/tmp/ws-ua_20230717013228_GHGMMD/dotnet_DIMSSU/20230717013228/dotnetnuke.core/9.9.0/dotnetnuke.core.9.9.0.nupkg
Dependency Hierarchy: - :x: **dotnetnuke.core.9.9.0.nupkg** (Vulnerable Library)
Found in base branch: main
DNN (formerly DotNetNuke) through 9.4.4 has Insecure Permissions.
Publish Date: 2020-02-24
URL: CVE-2020-5188
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: High - Availability Impact: None
For more information on CVSS3 Scores, click here.Step up your Open Source Security Game with Mend here