Primary

Context

DNN.Platform Login IP Filter Bypass Vulnerability

Vulnerability

Patched

A vulnerability in DNN.Platform versions 7.0.0 prior to 10.0.1 allows for the creation of specially crafted requests or proxies that can bypass the DNN Login IP Filters. This bypass enables login attempts from IP addresses not included in the allow list. The issue has been patched in version 10.0.1.

Impact

Exploitation of this vulnerability could lead to unauthorized login attempts from disallowed IP addresses, potentially allowing unauthorized access to the application.

Remediation

Users can upgrade to DNN.Platform version 10.0.1 to address this vulnerability.

Added: Jun 21, 2025, 3:23 AM

Updated: Jun 21, 2025, 3:23 AM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

2.5

exploitability

8.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

2.5

exploitability

8.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

DNN.Platform Login IP Filter Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

DNN

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating