Remote Code Execution and SuperUser Access Vulnerability in DotNetNuke (DNN) Installation Wizard

CVE-2015-2794

The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the application and gain SuperUser access via a direct request to Install/InstallWizard.aspx.

Learn more about our User Device Pen Test.