NuytsTech Security

CVE-2008-7102

by ·

DotNetNuke 2.0 through 4.8.4 allows remote attackers to load .ascx files instead of skin files, and possibly access privileged functionality, via unknown vectors related to parameter validation.

Date published : 2009-08-27

http://www.securityfocus.com/bid/31145

http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno23/tabid/1176/Default.aspx

Tags: