Arbitrary ASPX Code Execution via Unvalidated File Extension in Miniblog.Core

CVE-2019-9845 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

madskristensen Miniblog.Core through 2019-01-16 allows remote attackers to execute arbitrary ASPX code via an IMG element with a data: URL, because SaveFilesToDisk in Controllers/BlogController.cs writes a decoded base64 string to a file without validating the extension.

Learn more about our Web Application Penetration Testing UK.