Skip to content

DotNetNuke.Core security code analysis rules triggered

Low severity GitHub Reviewed Published Apr 13, 2026 in dnnsoftware/Dnn.Platform • Updated Apr 14, 2026

Package

nuget DotNetNuke.Core (NuGet)

Affected versions

>= 6.0.0, < 10.2.2

Patched versions

10.2.2

Description

The codebase raises code analysis warnings related to security, including CA3075, CA5366, CA5371, CA5368, CA5369, CA5372, CA5379, CA5350, and CA5351.

Most of these deal with disabling DTD processing in XML documents, but also includes cryptographic algorithm choices.

References

@valadas valadas published to dnnsoftware/Dnn.Platform Apr 13, 2026
Published to the GitHub Advisory Database Apr 14, 2026
Reviewed Apr 14, 2026
Last updated Apr 14, 2026

Severity

Low

EPSS score

Weaknesses

No CWEs

CVE ID

No known CVE

GHSA ID

GHSA-fcpv-w245-r2q7

Source code

Credits

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.