{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T19:56:41.154","vulnerabilities":[{"cve":{"id":"CVE-2008-7100","sourceIdentifier":"cve@mitre.org","published":"2009-08-27T20:30:00.500","lastModified":"2026-04-24T17:34:37.240","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in DotNetNuke 4.4.1 through 4.8.4 allows remote authenticated users to bypass authentication and gain privileges via unknown vectors related to a \"unique id\" for user actions and improper validation of a \"user identity.\""},{"lang":"es","value":"Vulnerabilidad sin especificar en DotNetNuke v4.0 a la v4.8.4 y 5.0, permite a usuarios autenticados remotamente evitar la autenticación y  obtener privilegios a través de vectores desconocidos relacionados con un identificador único (\"unique id\") para las acciones de usuario y una validación inadecuada de la identidad de usuario ((\"user identity\")."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.4.1:*:*:*:*:*:*:*","matchCriteriaId":"B50DFDAD-2624-45F3-ACA2-176197F71F95"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.5.2:*:*:*:*:*:*:*","matchCriteriaId":"225B1E93-6963-4569-AF6F-E534E4DC351E"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.5.4:*:*:*:*:*:*:*","matchCriteriaId":"84703D9D-6318-4F78-91FA-015B9484A8C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.5.5:*:*:*:*:*:*:*","matchCriteriaId":"6D578455-9973-4BC4-BA10-2A4AB0301840"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.6.0:*:*:*:*:*:*:*","matchCriteriaId":"E404EC72-E317-4D5A-B13E-31D6C569F4D7"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.6.1:*:*:*:*:*:*:*","matchCriteriaId":"AD79C8EA-CD84-47AD-93DC-152EB717DC79"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.6.2:*:*:*:*:*:*:*","matchCriteriaId":"6AB4573D-5B8E-41D2-986A-338D1F03CB99"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.7.0:*:*:*:*:*:*:*","matchCriteriaId":"AAC55855-1B13-43F5-91C5-D56F1D605F40"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.8.0:*:*:*:*:*:*:*","matchCriteriaId":"7163CF0E-F277-4CB8-8CB7-5701200C9B48"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.8.1:*:*:*:*:*:*:*","matchCriteriaId":"067321EB-5A1D-43B6-9826-6E14701CFFCC"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.8.2:*:*:*:*:*:*:*","matchCriteriaId":"1A561AD7-1E12-4F43-B78E-38B565B41B1D"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.8.3:*:*:*:*:*:*:*","matchCriteriaId":"AE07817D-D3D9-4A9F-90A5-CFE0F2CC4F8E"},{"vulnerable":true,"criteria":"cpe:2.3:a:dnnsoftware:dotnetnuke:4.8.4:*:*:*:*:*:*:*","matchCriteriaId":"8D12406C-E93F-4248-B8EC-C34DA36B3C6C"}]}]}],"references":[{"url":"http://osvdb.org/48343","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31893","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno21/tabid/1174/Default.aspx","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/31145","source":"cve@mitre.org","tags":["Patch"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45081","source":"cve@mitre.org"},{"url":"http://osvdb.org/48343","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/31893","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno21/tabid/1174/Default.aspx","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/31145","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45081","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}