This page collects WhisperX intelligence signals tagged #mvc. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical Cross-Site Request Forgery (CSRF) vulnerability has been identified in the GodObjectProfile component of a .NET 8 MVC application, allowing unauthorized state-mutating operations through standard GET requests. The flaw, reported through the project's issue tracker, exposes authenticated users to forced profi...
A critical Cross-Site Request Forgery vulnerability has been identified in the GodObjectProfile component of a .NET 8 MVC application, allowing state-mutating operations to be triggered through GET requests. The flaw, documented in a GitHub issue, exposes user profile data to unauthorized modification without requiring...
A path traversal vulnerability has been identified in Spring Framework MVC applications when deployed on Servlet containers that do not enforce strict URI path canonicalization. The flaw specifically affects applications serving static resources through Spring's resource handling mechanism, raising the risk of unauthor...