MidnightBSD

Advisories for nancyfx

CVE-2017-9785 HIGH

Csrf.cs in NancyFX Nancy before 1.4.4 and 2.x before 2.0-dangermouse has Remote Code Execution via Deserialization of JSON data in a CSRF Cookie.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,

Products Affected

Vendor Product Version
nancyfx nancy 2.0.0
nancyfx nancy *