CVE-2019-9842

Name of the Vulnerable Software and Affected Versions madskristensen MiniBlog through 2018-05-18

Description The issue allows remote attackers to execute arbitrary ASPX code via an IMG element with a data: URL. This is because the SaveFilesToDisk function in app code/handlers/PostHandler.cs writes a decoded base64 string to a file without validating the extension.

Recommendations For madskristensen MiniBlog through 2018-05-18, consider validating file extensions before writing decoded base64 strings to disk to prevent arbitrary ASPX code execution. As a temporary workaround, restrict the ability to upload or save files with potentially dangerous extensions.