Launch Week Day 1: Announcing Security Design Review

DNN Path Traversal via Zip Slip

GHSA-4qf5-7xc2-wqpg · CVE-2020-5187

Published May 24, 2022 · Modified Feb 16, 2024

Description

DNN (formerly DotNetNuke) through 9.4.4 allows Path Traversal via unsafe handling of zip files

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes