CVE-2025-64095

CRITICAL EXPLOITED NUCLEI

Dnnsoftware Dotnetnuke < 10.1.1 - Unrestricted File Upload

Title source: rule

Description

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to 10.1.1, the default HTML editor provider allows unauthenticated file uploads and images can overwrite existing files. An unauthenticated user can upload and replace existing files allowing defacing a website and combined with other issue, injection XSS payloads. This vulnerability is fixed in 10.1.1.

Exploits (3)

github WRITEUP 14 stars

by h4x0r-dz · client-side

https://github.com/h4x0r-dz/CVE-2025-64095---DNN-Unauthenticated-arbitrary-file-upload

View Code ZIP pw:eip

github WORKING POC 6 stars

by NationalServices · pythonclient-side

https://github.com/NationalServices/CVE-2025-64095-DotNetNuke-DNN_PoC

View Code ZIP pw:eip

nomisec WORKING POC

by 0xr2r · poc

https://github.com/0xr2r/CVE-2025-64095

View Code ZIP pw:eip

Nuclei Templates (1)

DNN - Unrestricted Arbitrary File Upload

CRITICALVERIFIEDby DhiyaneshDk,pussycat0x

Shodan: Set-Cookie: dnn_IsMobile || http.favicon.hash:-1465479343

FOFA: app="dotnetnuke" || Set-Cookie: dnn_IsMobile || icon_hash="-1465479343"

References (1)

[Vendor Advisory] https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-3m8r-w7xg-jqvw

Scores

CVSS v3 10.0

EPSS 0.1345

EPSS Percentile 94.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

VulnCheck KEV 2025-11-27

CWE

CWE-434

Status published

Products (2)

dnnsoftware/dotnetnuke < 10.1.1

nuget/DNN.PLATFORM 0 - 10.1.1NuGet

Published Oct 28, 2025

Tracked Since Feb 18, 2026