RSS   Vulnerabilities for 'Ajax control toolkit'   RSS



Directory traversal vulnerability in the AjaxFileUpload control in DevExpress AJAX Control Toolkit (aka AjaxControlToolkit) before 15.1 allows remote attackers to write to arbitrary files via a .. (dot dot) in the fileId parameter to AjaxFileUploadHandler.axd.


 >>> Vendor: Devexpress 2 Products
Aspxfilemanager control for webforms and mvc
Ajax control toolkit

Copyright 2017,


Back to Top