RicoSuter / NSwag

The Swagger/OpenAPI toolchain for .NET, ASP.NET Core and TypeScript.
http://NSwag.org
MIT License
6.77k stars 1.29k forks source link

Vulnerability CVE-2018-25031 #3934

Open iAnathema opened 2 years ago

iAnathema commented 2 years ago

Could this vulnerability be a concern?

https://nvd.nist.gov/vuln/detail/CVE-2018-25031

304NotModified commented 1 year ago

working link: https://nvd.nist.gov/vuln/detail/CVE-2018-25031

This is swagger UI and not NSwag?

Description Swagger UI before 4.1.3 could allow a remote attacker to conduct spoofing attacks