XML Parser and XML External Entity
Does the XML parser Decisions uses have XML External Entity disabled by default?
Comments
-
The .NET XML features that Decisions uses are, by default, not vulnerable to XXE in .NET Framework 4.5.2 and above, and in .NET Core 2.1 and above (including .NET 5 and 6). Therefore, any somewhat recent version should be secure against XXE vulnerabilities.
Howdy, Stranger!
Categories
- 4.3K All Categories
- 70 General
- 11 Training
- 206 Installation / Setup
- 1.1K Flows
- 109 Rules
- 268 Administration
- 212 Portal
- 496 General Q & A
- 708 Forms
- 338 Reports
- 3 Designer Extensions
- 48 Example Flows
- 56 CSS Examples
- 1 Diagram Tile
- 7 Javascript Controls
- 184 Pages
- 5 Process Mining
- New Features
- 182 Datastructures
- 69 Repository
- 228 Integrations
- 28 Multi-Tenant
- 27 SDK
- 81 Modules
- 57 Settings
- 25 Active Directory
- 12 Version 7
- 35 Version 8
- 130 Lunch And Learn Questions