Dotnetnuke < 10.1.1 Stored cross-site-scripting (XSS) via SVG upload (CVE-2025-64094)

Language:

Version 1.3 Feb 25, 2026, 1:08 AM IAVM reference Plugin Feed: 202602250108
Version 1.2 Oct 31, 2025, 8:07 PM IAVM reference STIG Severity (set to "I") Plugin Feed: 202510312007
Version 1.1 Oct 29, 2025, 3:03 AM New Plugin Feed: 202510290303

* Changelogs are generally available for changes made after Nov 1, 2022