Tag vulnerability

Vulnerability identified in Smidge

smidge-define-bundle

Smidge – A lightweight library for runtime CSS and JavaScript file management, minification, combination & compression in Microsoft .NET. In Program.cs of a .NET web application a Smidge Javascript bundle is defined with “CreateJs”. This module is vulnerable to arbitrary…

Importance of input validation

gitPython

All forms of input to an application needs to be validated. For example, to notify a user about suspicious typos or for security reasons. The easiest form of validation is probably of integers, ie the input cannot consist of anything…