Unrated severityNVD Advisory· Published Dec 5, 2025· Updated Dec 5, 2025
CVE-2016-20023
CVE-2016-20023
Description
In CKSource CKFinder before 2.5.0.1 for ASP.NET, authenticated users could download any file from the server if the correct path to a file was provided.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.