cve/CVE-2017-11357.md at 32646c20e71810932fbd5e08aba28eaca6211a4d

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-14 20:08:44 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to RadAsyncUpload, which allows remote attackers to perform arbitrary file uploads or execute arbitrary code.

POC

Reference

https://www.exploit-db.com/exploits/43874/

Github

https://github.com/0xT11/CVE-POC
https://github.com/ARPSyndicate/cvemon
https://github.com/Ostorlab/KEV
https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
https://github.com/SABUNMANDICYBERTEAM/telerik
https://github.com/ThanHuuTuan/CVE_2019_18935
https://github.com/alphaSeclab/sec-daily-2019
https://github.com/bao7uo/RAU_crypto
https://github.com/bao7uo/dp_crypto
https://github.com/developer3000S/PoC-in-GitHub
https://github.com/hectorgie/PoC-in-GitHub
https://github.com/lnick2023/nicenice
https://github.com/qazbnm456/awesome-cve-poc
https://github.com/santosomar/kev_checker
https://github.com/xbl3/awesome-cve-poc_qazbnm456

1.3 KiB Raw Blame History

CVE-2017-11357

Description

POC

Reference

Github

1.3 KiB

Raw Blame History