claytonvantol.us
SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2018-18325-dotnetnuke-dnn-dotnetnuke-dnn.log

CVE-2018-18325 — DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability

2021-11-03 • CISA Known Exploited Vulnerability

[event] DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters. This CVE ID resolves an incomplete patch for CVE-2018-15811.

> AFFECTED SOFTWARE

Field Value
Vendor DotNetNuke (DNN)
Product DotNetNuke (DNN)
CWE CWE-326
CVE ID CVE-2018-18325
Date Added 2021-11-03
Due Date 2022-05-03
Ransomware Campaign Unknown

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-05-03

> REFERENCES

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:15 UTC