CVE-2026-40306

Vulnerability Description

DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. All new installations of DNN 10.x.x - 10.2.1 have the same Host GUID. This does not affect upgrades from 9.x.x. Version 10.2.2 patches the issue.

Vulnerability Details

Published Date

April 17, 2026

Last Modified

April 17, 2026

CWE ID

CWE-330

Source

NVD

Vendor

dnnsoftware

Product

Dnn.Platform

External References

https://github.com/dnnsoftware/Dnn.Platform/releases/tag/v10.2.2
https://github.com/dnnsoftware/Dnn.Platform/security/advisories/GHSA-2rhw-gw3f-477j

CVE-2026-40306

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment