cve/CVE-2015-2794.md at 88e5fb8579a05a745ee9298121063720b1e1feba

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

1.1 KiB

Raw Blame History

CVE-2015-2794

Description

The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the application and gain SuperUser access via a direct request to Install/InstallWizard.aspx.

POC

Reference

http://www.dnnsoftware.com/community/security/security-center
https://www.exploit-db.com/exploits/39777/

Github

https://github.com/0xr2r/-DotNetNuke-Administration-Authentication-Bypass
https://github.com/ARPSyndicate/cvemon
https://github.com/Kro0oz/-DotNetNuke-Administration-Authentication-Bypass
https://github.com/d4n-sec/d4n-sec.github.io
https://github.com/hantwister/sites-compromised-20170625-foi
https://github.com/styx00/DNN_CVE-2015-2794
https://github.com/wilsc0w/CVE-2015-2794-finder
https://github.com/x0xr2r/-DotNetNuke-Administration-Authentication-Bypass

1.1 KiB Raw Blame History

CVE-2015-2794

Description

POC

Reference

Github

1.1 KiB

Raw Blame History