Published: Feb 1, 2012

Version: 1.0

Maximum Severity Rating: Critical

Background

DotNetNuke contains code that allows users to edit their profile and site administrators/hosts the ability to administer user settings including creating new users and editing existing users.

Issue Summary

As a common page is used for both functions, the code checks for the users permissions and redirects approriately. However a weakness in the code means that a potential hacker can stop the redirect and gain access to the functions available to portal admins and host users. They can then use these to create new users, delete users, and edit existing users and roles for those users.

Mitigating factors

N/A

Affected DotNetNuke versions

• All

Non-Affected Versions:

• N/A

Fix(s) for issue

To fix this problem, you are recommended to update to the latest version of DotNetNuke (5.6.7/6.1.3 at time of writing)

Acknowledgments

Mark Litchfield from NGSSecure