Medium severity6.5NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026
CVE-2018-0785
CVE-2018-0785
Description
ASP.NET Core 1.0. 1.1, and 2.0 allow a cross site request forgery vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Cross Site Request Forgery Vulnerability".
Affected products
2- Range: <=2.0
- Microsoft Corporation/ASP.NET Corev5Range: ASP.NET Core 1.0. 1.1, and 2.0
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0785nvdPatchVendor Advisory
- www.securityfocus.com/bid/102379nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040151nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.