XML Parser and XML External Entity
Does the XML parser Decisions uses have XML External Entity disabled by default?
Comments
-
The .NET XML features that Decisions uses are, by default, not vulnerable to XXE in .NET Framework 4.5.2 and above, and in .NET Core 2.1 and above (including .NET 5 and 6). Therefore, any somewhat recent version should be secure against XXE vulnerabilities.
Howdy, Stranger!
Categories
- 4.1K All Categories
- 60 General
- 11 Training
- 201 Installation / Setup
- 1.1K Flows
- 106 Rules
- 260 Administration
- 212 Portal
- 489 General Q & A
- 693 Forms
- 333 Reports
- 3 Designer Extensions
- 47 Example Flows
- 51 CSS Examples
- 1 Diagram Tile
- 7 Javascript Controls
- 178 Pages
- 5 Process Mining
- New Features
- 178 Datastructures
- 69 Repository
- 219 Integrations
- 28 Multi-Tenant
- 27 SDK
- 76 Modules
- 56 Settings
- 25 Active Directory
- 12 Version 7
- 35 Version 8
- 66 Lunch And Learn Questions