CVE-2013-5117
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0079 (0.8%)
Percentil: 73.9%
EPSS: 2026-05-06
Afecta
zldnn:dnnarticleDescripción técnica
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
Publicada: 12/3/2014, 14:55:30
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://osvdb.org/96306
- http://seclists.org/fulldisclosure/2013/Sep/9
- http://www.exploit-db.com/exploits/27602
- http://www.securityfocus.com/bid/61788
- http://www.zldnn.com/ViewArticle/Solution-for-DNNArticle-RSS-Security-Issue.aspx
- http://osvdb.org/96306
- http://seclists.org/fulldisclosure/2013/Sep/9
- http://www.exploit-db.com/exploits/27602