Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

GSA_kwCzR0hTQS1mamhnLTNtcmgtbW03aM4ABJSj

High CVSS: 8.8 EPSS: 0.00075% (0.23322 Percentile) EPSS:
Permalink JSON

DNN.PLATFORM possibly allows bypass of IP Filters

Affected Packages Affected Versions Fixed Versions
nuget:DNN.PLATFORM >= 7.0.0, < 10.0.1 10.0.1
0 Dependent packages
3 Dependent repositories
21,868 Downloads total

Affected Version Ranges

All affected versions

7.2.0, 7.3.0, 7.4.0, 8.0.0, 9.1.0, 9.2.0, 9.4.0, 9.9.0

All unaffected versions

DNN.PLATFORM allows a specially crafted request or proxy to be created that would bypass the design of DNN Login IP Filters allowing login attempts from IP Adresses not in the allow list. This vulnerability is fixed in 10.0.1.

References:

Identifiers

GHSA-fjhg-3mrh-mm7h

CVE-2025-52487

Risk

Severity

High

CVSS

CVSS Score: 8.8

CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N

EPSS

EPSS Percentage: 0.00075

EPSS Percentile: 0.23322

Classification

General

Source

GitHub Advisory Database

Origin

Unspecified

Repository

https://github.com/dnnsoftware/Dnn.Platform

Date and time

Published

about 1 month ago

Updated

about 1 month ago

API

JSON