This affects all versions of package elFinder.NetCore. The ExtractAsync function within the FileSystem is vulnerable to arbitrary extraction due to insufficient validation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
elfinder.netcore project elfinder.netcore |