.NET XML Signature Verification External Entity Injection
Posted by deepcore on September 10, 2022 – 2:26 am
XML signature verification in .NET 6 as implemented in System.Security.Cryptography.Xml.SignedXml is vulnerable to external entity injection attacks.
Post a reply
You must be logged in to post a comment.