Vulnerability Database
296,733
Total vulnerabilities in the database
CVE-2008-6644
Cross-site scripting (XSS) vulnerability in Default.aspx in DotNetNuke 4.8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
| Software | From | Fixed in |
|---|---|---|
| dotnetnuke / dotnetnuke | 4.8.2 | 4.8.2.x |
| dotnetnuke / dotnetnuke | 4.8.1 | 4.8.1.x |
| dotnetnuke / dotnetnuke | 2.1.1 | 2.1.1.x |
| dotnetnuke / dotnetnuke | 1.0.10e | 1.0.10e.x |
| dotnetnuke / dotnetnuke | 1.0.10d | 1.0.10d.x |
| dotnetnuke / dotnetnuke | 1.0.7 | 1.0.7.x |
| dotnetnuke / dotnetnuke | 4.5.2 | 4.5.2.x |
| dotnetnuke / dotnetnuke | - | 4.8.3.x |
| dotnetnuke / dotnetnuke | 1.0.8 | 1.0.8.x |
| dotnetnuke / dotnetnuke | 1.0.6 | 1.0.6.x |
| dotnetnuke / dotnetnuke | 1.0.9 | 1.0.9.x |
| dotnetnuke / dotnetnuke | 3.0.8 | 3.0.8.x |
| dotnetnuke / dotnetnuke | 4.3.5 | 4.3.5.x |
| dotnetnuke / dotnetnuke | 2.1.2 | 2.1.2.x |
| dotnetnuke / dotnetnuke | 4.0 | 4.0.x |
| dotnetnuke / dotnetnuke | 3.0.11 | 3.0.11.x |
| dotnetnuke / dotnetnuke | 3.0.7 | 3.0.7.x |
| dotnetnuke / dotnetnuke | 3.3.5 | 3.3.5.x |
| dotnetnuke / dotnetnuke | 3.1.0 | 3.1.0.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime