CVE-2025-52488 – DNN NTLM Hash Exposure Vulnerability

June 21, 2025

CVE ID : CVE-2025-52488

Published : June 21, 2025, 3:15 a.m. | 3 hours ago

Description : DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. In versions 6.0.0 to before 10.0.1, DNN.PLATFORM allows a specially crafted series of malicious interaction to potentially expose NTLM hashes to a third party SMB server. This issue has been patched in version 10.0.1.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52487 – DNN Bypass Login IP Filter Vulnerability

Next Article CVE-2025-52486 – DNN TokenReplace URL Sanitation Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

I love that transparent technology is making a comeback — and one of the biggest gaming companies has joined the fun

“Let’s amp up everything” — Directive 8020 is Alien meets The Thing, and it’s introducing these huge changes for Supermassive’s cinematic horror games

Poll: Is Xbox heading in the right direction? Cast your vote here!

Microsoft is blocking Google Chrome in the name of family safety — but this time it actually makes sense

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

Lakeflow: Revolutionizing SCD2 Pipelines with Change Data Capture (CDC)

vitorccs/laravel-csv

Dr. Axel’s JavaScript flashcards

I love that transparent technology is making a comeback — and one of the biggest gaming companies has joined the fun

I love that transparent technology is making a comeback — and one of the biggest gaming companies has joined the fun

“Let’s amp up everything” — Directive 8020 is Alien meets The Thing, and it’s introducing these huge changes for Supermassive’s cinematic horror games

Poll: Is Xbox heading in the right direction? Cast your vote here!

CVE-2025-52488 – DNN NTLM Hash Exposure Vulnerability

ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

Australian Organisations Urged to Patch Ivanti Products Amid Exploited RCE Vulnerability

Disney+ or Hulu subscriber? You could win a cruise or concert tickets now – here’s how

Reflective Kerberos Relay Attack (CVE-2025-33073): NT AUTHORITYSYSTEM Privilege Escalation

CVE-2025-6119 – Open Asset Import Library Assimp Use After Free Vulnerability

Phone satisfaction falls to 10-year low – and AI is only partly to blame

Amazon Q Developer gets new agentic coding experience in Visual Studio Code

Efficiently remove expired cache data with Laravel Cache Evict

CVE-2025-4270 – TOTOLINK A720R CGI Config Handler Information Disclosure

CVE-2025-52488 – DNN NTLM Hash Exposure Vulnerability

Related Posts