Vulnerability CVE-2021-31858
Published: 2022-07-20

Description:
DotNetNuke (DNN) 9.9.1 CMS is vulnerable to a Stored Cross-Site Scripting vulnerability in the user profile biography section which allows remote authenticated users to inject arbitrary code via a crafted payload.

 References:
https://labs.integrity.pt/advisories/cve-2021-31858/
https://www.dnnsoftware.com/community/security/security-center
Copyright 2026, cxsecurity.com

 

Back to Top