Unspecified vulnerability in DotNetNuke 4.0 through 4.8.4 and 5.0 allows remote attackers to obtain sensitive information (portal number) by accessing the install wizard page via unknown vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dotnetnuke | Dotnetnuke | 4.0 (including) | 4.0 (including) |
| Dotnetnuke | Dotnetnuke | 4.3.5 (including) | 4.3.5 (including) |
| Dotnetnuke | Dotnetnuke | 4.4.1 (including) | 4.4.1 (including) |
| Dotnetnuke | Dotnetnuke | 4.5.2 (including) | 4.5.2 (including) |
| Dotnetnuke | Dotnetnuke | 4.5.4 (including) | 4.5.4 (including) |
| Dotnetnuke | Dotnetnuke | 4.5.5 (including) | 4.5.5 (including) |
| Dotnetnuke | Dotnetnuke | 4.6.0 (including) | 4.6.0 (including) |
| Dotnetnuke | Dotnetnuke | 4.6.1 (including) | 4.6.1 (including) |
| Dotnetnuke | Dotnetnuke | 4.6.2 (including) | 4.6.2 (including) |
| Dotnetnuke | Dotnetnuke | 4.7.0 (including) | 4.7.0 (including) |
| Dotnetnuke | Dotnetnuke | 4.8.0 (including) | 4.8.0 (including) |
| Dotnetnuke | Dotnetnuke | 4.8.1 (including) | 4.8.1 (including) |
| Dotnetnuke | Dotnetnuke | 4.8.2 (including) | 4.8.2 (including) |
| Dotnetnuke | Dotnetnuke | 4.8.3 (including) | 4.8.3 (including) |
| Dotnetnuke | Dotnetnuke | 4.8.4 (including) | 4.8.4 (including) |
| Dotnetnuke | Dotnetnuke | 5.0 (including) | 5.0 (including) |
References
- http://osvdb.org/48344
- http://secunia.com/advisories/31893
- http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno22/tabid/1175/Default.aspx
- http://www.securityfocus.com/bid/31145
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45080
- http://osvdb.org/48344
- http://secunia.com/advisories/31893
- http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno22/tabid/1175/Default.aspx
- http://www.securityfocus.com/bid/31145
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45080