mguinness

1 exploit Active since Jul 2021
CVE-2021-23415 WRITEUP HIGH WRITEUP
elFinder.AspNet < 1.1.1 - Path Traversal via Unsanitized File Name
This affects the package elFinder.AspNet before 1.1.1. The user-controlled file name is not properly sanitized before it is used to create a file system path.
CVSS 7.5