Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DNN allows the possibility of bypassing Captcha
Vulnerability Description
DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. The algorithm used to generate the captcha image shows the least complexity of the desired image. For this reason, the created image can be easily read by OCR tools, and the intruder can send automatic requests by building a robot and using this tool. This vulnerability is fixed in 9.13.8.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
可猜测的验证码
Vulnerability Title
Dnn.Platform 安全漏洞
Vulnerability Description
Dnn.Platform是Dnn Software开源的一个开源网络内容管理平台(CMS)。 Dnn.Platform存在安全漏洞,该漏洞源于验证码生成算法复杂度低,容易被OCR工具识别。
CVSS Information
N/A
Vulnerability Type
N/A