← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-18325 — Actively Exploited: DotNetNuke (DNN) (DotNetNuke (DNN))

DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters. This CVE ID resolves an incomplete patch for CVE-2018-15811.

CVE IDCVE-2018-18325
VendorDotNetNuke (DNN)
ProductDotNetNuke (DNN)
Vulnerability nameDotNetNuke (DNN) Inadequate Encryption Strength Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionDotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters. This CVE ID resolves an incomplete patch for CVE-2018-15811.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →