VYPR

ASP.NET MVC

by Microsoft

CVEs (2)

  • CVE-2018-8171HigJul 11, 2018
    risk 0.50cvss 7.5epss 0.10

    A Security Feature Bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated, aka "ASP.NET Security Feature Bypass Vulnerability." This affects ASP.NET, ASP.NET Core 1.1, ASP.NET Core 1.0, ASP.NET Core 2.0, ASP.NET MVC 5.2.

  • CVE-2014-4075Oct 15, 2014
    risk 0.02cvss epss 0.20

    Cross-site scripting (XSS) vulnerability in System.Web.Mvc.dll in Microsoft ASP.NET Model View Controller (MVC) 2.0 through 5.1 allows remote attackers to inject arbitrary web script or HTML via a crafted web page, aka "MVC XSS Vulnerability."