Throughout the years we have striven to provide not only functional, but also secure controls. There have been many reports on security matter and some of them have captured actual vulnerabilities. For that we address any report with the respective caution and attention, as the security topic is a very important one.
Nevertheless currently the controls do not expose any severe vulnerabilities that we are aware of.
Please, note that many of the issues in your report are false alerts that actually are not security weaknesses. No tool is perfect in determining the real state-of-the-art of the code it analyses (common disclaimer for any such tool).
Still we will go through the list thoroughly and if we notice disturbing issues we will address them in due time. For that matter if you have concrete example of a vulnerability and how an adversary can take advantage of it, this would speed things up.
Thank you for your the efforts you are putting into this.
the Telerik team
If you want to get updates on new releases, tips and tricks and sneak peeks at our product labs directly from the developers working on the RadControls for ASP.NET AJAX, subscribe to their blog feed