dotnet.txt...

- AV AC AU C I A
发布: 2003-09-13
修订: 2021-01-11

Secunia Research Advisory - A vulnerability has been reported in ASP.NET, which can be exploited by malicious people to bypass the "Request Validation" security mechanism. The "Request Validation" mechanism designed to protect against Cross-Site Scripting and SQL injection allows restricted tags when they include a NULL byte. However, this is a problem since some browsers, like Internet Explorer, ignore NULL bytes when parsing input, which may cause them to execute the content in the tags anyway.

0%
当前有1条漏洞利用/PoC
当前有0条受影响产品信息