Vulnerability Database

Published: Oct 29, 2025
Updated: Oct 30, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-64095" target="_blank" rel="noopener"> CVE-2025-64095
GHSA: <a href="https://github.com/advisories/GHSA-3m8r-w7xg-jqvw" target="_blank" rel="noopener"> GHSA-3m8r-w7xg-jqvw
Severity: Critical
Exploit:

296,853

Total vulnerabilities in the database

The default HTML editor provider allows unauthenticated file uploads and images can overwrite existing files.

An unauthenticated user can upload and replace existing files allowing defacing a website and combined with other issue, injection XSS payloads.

CVSS v3:

CWEs:

Software	From	Fixed in
DNN.PLATFORM	-	10.1.1

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.