CVE-2019-1302

Name of the Vulnerable Software and Affected Versions ASP.NET Core (affected versions not specified)

Description The issue is related to errors in processing web requests using templates. It may allow a remote attacker to elevate their privileges and perform a cross-site scripting attack by sending an email with a malicious link. The vulnerability exists when an ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.