Hi All,
Just wondering if this could be backfitted and set out as a small fix to previous versions, as much as I would love to upgrade to CSLA 8.0 I am just not in a position to do this at the moment, but don't want this vulnerability to show up in future testing done by the customer.
https://www.intruder.io/research/path-traversal-and-code-execution-in-csla-net-cve-2024-28698?utm_content=301411509&utm_medium=social&utm_source=twitter&hss_channel=tw-3189900201
Version and Platform
CSLA version: 5.3.3
OS: Window
Platform: WebAPI
Hi All,
Just wondering if this could be backfitted and set out as a small fix to previous versions, as much as I would love to upgrade to CSLA 8.0 I am just not in a position to do this at the moment, but don't want this vulnerability to show up in future testing done by the customer.
https://www.intruder.io/research/path-traversal-and-code-execution-in-csla-net-cve-2024-28698?utm_content=301411509&utm_medium=social&utm_source=twitter&hss_channel=tw-3189900201
Version and Platform
CSLA version: 5.3.3
OS: Window
Platform: WebAPI