CVEs-PoC/2015/CVE-2015-2794.md at 52f3262c8d52545fc4e20c2a38454fc446c51385

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-14 23:28:04 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

1.2 KiB

Raw Blame History

CVE-2015-2794

Description

The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the application and gain SuperUser access via a direct request to Install/InstallWizard.aspx.

POC

Reference

http://www.dnnsoftware.com/community/security/security-center
http://www.dnnsoftware.com/community/security/security-center
https://www.exploit-db.com/exploits/39777/
https://www.exploit-db.com/exploits/39777/

Github

https://github.com/0xr2r/-DotNetNuke-Administration-Authentication-Bypass
https://github.com/ARPSyndicate/cvemon
https://github.com/Kro0oz/-DotNetNuke-Administration-Authentication-Bypass
https://github.com/d4n-sec/d4n-sec.github.io
https://github.com/hantwister/sites-compromised-20170625-foi
https://github.com/styx00/DNN_CVE-2015-2794
https://github.com/wilsc0w/CVE-2015-2794-finder
https://github.com/x0xr2r/-DotNetNuke-Administration-Authentication-Bypass

1.2 KiB Raw Blame History

CVE-2015-2794

Description

POC

Reference

Github

1.2 KiB

Raw Blame History