Remote Code Execution and SuperUser Access Vulnerability in DotNetNuke (DNN) Installation Wizard
CVE-2015-2794 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote attackers to reinstall the application and gain SuperUser access via a direct request to Install/InstallWizard.aspx.
Learn more about our User Device Pen Test.