Vulnerability CVE-2020-5187

Vulnerability CVE-2020-5187

Published: 2020-02-24

Description:

Type:

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.5/10	6.4/10	8/10

Affected software
Dnnsoftware -> Dotnetnuke

http://packetstormsecurity.com/files/156489/DotNetNuke-CMS-9.4.4-Zip-Directory-Traversal.html

https://github.com/dnnsoftware/Dnn.Platform/releases

https://medium.com/@SajjadPourali/dnn-dotnetnuke-cms-not-as-secure-as-you-think-e8516f789175