CVE-2021-23415

Publication date

2021-07-28 16:05:23

Family

snyk

State

PUBLISHED

Description

This affects the package elFinder.AspNet before 1.1.1. The user-controlled file name is not properly sanitized before it is used to create a file system path.