Vulnerability Database

Published: Jul 3, 2019
Updated: Nov 9, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-15812" target="_blank" rel="noopener"> CVE-2018-15812
GHSA: <a href="https://github.com/advisories/GHSA-pf46-gqg9-j3v3" target="_blank" rel="noopener"> GHSA-pf46-gqg9-j3v3
Severity: High
Exploit:

309,237

Total vulnerabilities in the database

DNN (aka DotNetNuke) 9.2 through 9.2.1 incorrectly converts encryption key source values, resulting in lower than expected entropy.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
dnnsoftware / dotnetnuke	9.2	9.2.1.x
DotNetNuke.Core	9.2.0	9.2.2

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.