Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Absolute path traversal vulnerability in the RadAsyncUpload control in the RadControls in Telerik UI for ASP.NET AJAX before Q3 2012 SP2 allows remote attackers to write to arbitrary files, and consequently execute arbitrary code, via a full pathname in the UploadID metadata value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Telerik UI for ASP.NET AJAX 绝对路径遍历漏洞
Vulnerability Description
Telerik UI for ASP.NET AJAX是美国Telerik公司开发的一个用于处理AJAX的ASP.NET控件的UI(用户界面),它包含有图表、列表、界面、编辑、菜单、语言拼写验证控件等功能。RadEditor control是其中的一个内容编辑控件。 Telerik UI for ASP.NET AJAX 2014.3.1209及之前版本的RadControls中的RadAsyncUpload控件中存在绝对路径遍历漏洞。远程攻击者可借助UploadID元数据值中的完整路径名利用该漏洞写入任
CVSS Information
N/A
Vulnerability Type
N/A