CVE-2023-26564
The CVE-2023-26564 entry concerns Syncfusion EJ2 ASPCore File Provider 3ac357f. Affected component: Models/PhysicalFileProvider.cs, with a directory traversal flaw that allows an unauthenticated attacker to list files, download any file, or upload files to directories the web server can access. C...