2 matches found
CVE-2018-17060
Telerik Extensions for ASP.NET MVC all versions does not whitelist requests, which can allow a remote attacker to access files inside the server's web directory. NOTE: this product has been obsolete since June 2013...
CVE-2018-17060
The CVE refers to Telerik Extensions for ASP.NET MVC (all versions), which reportedly does not whitelist requests, enabling a remote attacker to access files inside the server’s web directory. The affected product is obsolete since June 2013. Connected advisories corroborate an improper access-co...