Vulnerabilities (CVE)

Filtered by vendor Elfinder.aspnet Project Subscribe
Filtered by product Elfinder.aspnet
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-23415 1 Elfinder.aspnet Project 1 Elfinder.aspnet 2024-02-28 5.0 MEDIUM 7.5 HIGH
This affects the package elFinder.AspNet before 1.1.1. The user-controlled file name is not properly sanitized before it is used to create a file system path.