If you create a threat actor with a "/" in the name, the links to add relationships, edit, or delete don't work because the "/" is passed literally in the links causing a 404. The web server interprets the "/" as designating a directory traversal instead of being part of the object name.
Recommend sanitizing input and output for Threat Actor object names.
If you create a threat actor with a "/" in the name, the links to add relationships, edit, or delete don't work because the "/" is passed literally in the links causing a 404. The web server interprets the "/" as designating a directory traversal instead of being part of the object name.
Recommend sanitizing input and output for Threat Actor object names.
Thanks for a great project!