Description

A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.

Remediation

References

CVE-2017-0256

Related Vulnerabilities

Drupal Core 4.6.x Multiple Cross-Site Scripting Vulnerabilities (4.6.0 - 4.6.9)

Family Connections Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-2010)

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5318)

Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-13662)

WordPress Plugin Portfolio-WordPress Portfolio Cross-Site Request Forgery (2.8.8)

Severity

Medium

Classification

CVE-2017-0256 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities