ASP.NET Core 2.0 allows an malicious user to steal log-in session information such as cookies or authentication tokens via a specially crafted URL aka "ASP.NET Core Elevation Of Privilege Vulnerability".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft asp.net core 2.0 |