3 matches found
CVE-2023-49289
Ajax.NET Professional AjaxPro is an AJAX framework for Microsoft ASP.NET which will create proxy JavaScript classes that are used on client-side to invoke methods on the web server. Affected versions of this package are vulnerable cross site scripting attacks. Releases before version 21.12.22.1 a...
CVE-2023-49289 Cross-site Scripting in Ajax.NET Professional
Ajax.NET Professional AjaxPro is an AJAX framework for Microsoft ASP.NET which will create proxy JavaScript classes that are used on client-side to invoke methods on the web server. Affected versions of this package are vulnerable cross site scripting attacks. Releases before version 21.12.22.1 a...
CVE-2023-49289
CVE-2023-49289 affects Ajax.NET Professional (AjaxPro) for Microsoft ASP.NET. Affected versions before 21.12.22.1 are vulnerable to Cross-Site Scripting (XSS) through the proxy JavaScript generation mechanism. The vulnerability entails missing input validation/encoding in client-server interactio...