CVE-2021-23758
Published
CVSS v3
8.1
HIGH
CVSS v2
7.5
HIGH
Affected
1
PROJECT
Description
All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code execution.
Ajax.NET Professional (AjaxPro) is one of the first AJAX frameworks available for Microsoft ASP.NET and is working with many .NET frameworks starting with v1.1.
GitHub