Vulnerabilities > CVE-2008-7100 - Unspecified vulnerability in Dotnetnuke
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Unspecified vulnerability in DotNetNuke 4.4.1 through 4.8.4 allows remote authenticated users to bypass authentication and gain privileges via unknown vectors related to a "unique id" for user actions and improper validation of a "user identity."
Vulnerable Configurations
References
- http://osvdb.org/48343
- http://osvdb.org/48343
- http://secunia.com/advisories/31893
- http://secunia.com/advisories/31893
- http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno21/tabid/1174/Default.aspx
- http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno21/tabid/1174/Default.aspx
- http://www.securityfocus.com/bid/31145
- http://www.securityfocus.com/bid/31145
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45081
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45081