RSS   Vulnerabilities for 'Extensions for asp.net mvc'   RSS

2018-10-08
 
CVE-2018-17060

CWE-284
 

 
Telerik Extensions for ASP.NET MVC (all versions) does not whitelist requests, which can allow a remote attacker to access files inside the server's web directory. NOTE: this product has been obsolete since June 2013.

 

 >>> Vendor: Telerik 6 Products
Asp.net ajax radeditor control
Ui for asp.net ajax
Analytics monitor library
Asp.net webforms report viewer
Sitefinity cms
Extensions for asp.net mvc


Copyright 2019, cxsecurity.com

 

Back to Top