CVE-2021-23427
nuget/elFinder.NetCore
Improper Input Validation
This affects all versions of package elFinder.NetCore. The ExtractAsync function within the FileSystem is vulnerable to arbitrary extraction due to insufficient validation.
All versions
Unfortunately, there is no solution available yet.
2021-09-16
source |