Description

A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.

Remediation

References

CVE-2017-0256

Related Vulnerabilities

WordPress Plugin WordPress Contact Forms by Cimatti Cross-Site Scripting (1.4.11)

WordPress Plugin Simple JWT Login-Login and Register to WordPress using JWT Insecure Password Creation (3.2.1)

WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Multiple Vulnerabilities (3.7.0)

WordPress Plugin WP Code Highlight.js Cross-Site Request Forgery (0.6.2)

WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Arbitrary File Upload (1.2.5)

Severity

Medium

Classification

CVE-2017-0256 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities