WEB APPLICATION VULNERABILITIES Standard & Premium

ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0249)

Description

An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.

Remediation

References

Related Vulnerabilities

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1158)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8874)

WordPress Plugin Traffic Analyzer Cross-Site Scripting (3.3.2)

WebLogic CVE-2022-21564 Vulnerability (CVE-2022-21564)

MySQL CVE-2016-5442 Vulnerability (CVE-2016-5442)

Severity

High

Classification

CVE-2017-0249 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities