Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ZLDNN DNNArticle for DotNetNuke ‘categoryid’参数SQL注入漏洞
Vulnerability Description
DotNetNuke(DNN)是美国DNN公司的一套由微软支持、基于ASP.NET平台的开源内容管理系统(CMS)。ZLDNN DNNArticle是其中的一个可对文章、新闻等内容进行管理的模块。 DotNetNuke ZLDNN DNNArticle模块10.0及之前版本中的RSS页面(DNNArticleRSS.aspx)存在SQL注入漏洞。远程攻击者可借助categoryid参数利用该漏洞执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A