CVE-2019-12562

MEDIUM

DotNetNuke < 9.4.0 - Stored Cross-Site Scripting in Admin Notification Page

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-12562. PoCs published by MaYaSeVeN, MAYASEVEN.

AI-analyzed exploit summary This exploit leverages a stored XSS vulnerability in DotNetNuke (DNN) before version 9.4.0 to add a superuser account. It injects a malicious script into the Display Name field during registration, which executes when an admin views the notification page.

Description

Stored Cross-Site Scripting in DotNetNuke (DNN) Version before 9.4.0 allows remote attackers to store and embed the malicious script into the admin notification page. The exploit could be used to perfom any action with admin privileges such as managing content, adding users, uploading backdoors to the server, etc. Successful exploitation occurs when an admin user visits a notification page with stored cross-site scripting.

Exploits (2)

exploitdb WORKING POC

by MaYaSeVeN · pythonwebappsmultiple

https://www.exploit-db.com/exploits/47448

View Code ZIP pw:eip

This exploit leverages a stored XSS vulnerability in DotNetNuke (DNN) before version 9.4.0 to add a superuser account. It injects a malicious script into the Display Name field during registration, which executes when an admin views the notification page.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: DotNetNuke (DNN) before 9.4.0

No auth needed

Prerequisites: Target DNN instance accessible · Admin user must visit the notification page

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 8 stars

by MAYASEVEN · poc

https://github.com/MAYASEVEN/CVE-2019-12562

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2019-12562, a stored XSS vulnerability in DotNetNuke (DNN) before version 9.4.0. The exploit adds a superuser account by injecting malicious JavaScript into the Display Name field during registration, which executes when an admin views the notification page.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: DotNetNuke (DNN) < 9.4.0

No auth needed

Prerequisites: Target must be a vulnerable DNN instance · Admin must visit the notification page for payload execution

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory x_refsource_misc

https://mayaseven.com/cve-2019-12562-stored-cross-site-scripting-in-dotnetnuke-dnn-version-v9-3-2/

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/154673/DotNetNuke-Cross-Site-Scripting.html

Scores

CVSS v3 6.1

EPSS 0.3867

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (2)

dnnsoftware/dotnetnuke < 9.4.0

nuget/DotNetNuke.Core 0 - 9.4.0NuGet

Published Sep 26, 2019

Tracked Since Feb 18, 2026