CVEs-PoC/2015/CVE-2015-2794.md at a90e356ad71b623d4f5d8b3f63bb30fa016d3021

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 23:27:33 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

1.1 KiB

Raw Blame History

CVE-2015-2794

Description

The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the application and gain SuperUser access via a direct request to Install/InstallWizard.aspx.

POC

Reference

http://www.dnnsoftware.com/community/security/security-center
https://www.exploit-db.com/exploits/39777/

Github

https://github.com/0xr2r/-DotNetNuke-Administration-Authentication-Bypass
https://github.com/ARPSyndicate/cvemon
https://github.com/Kro0oz/-DotNetNuke-Administration-Authentication-Bypass
https://github.com/d4n-sec/d4n-sec.github.io
https://github.com/hantwister/sites-compromised-20170625-foi
https://github.com/styx00/DNN_CVE-2015-2794
https://github.com/wilsc0w/CVE-2015-2794-finder
https://github.com/x0xr2r/-DotNetNuke-Administration-Authentication-Bypass

1.1 KiB Raw Blame History

CVE-2015-2794

Description

POC

Reference

Github

1.1 KiB

Raw Blame History