Press Ctrl / CMD + C to copy this to your clipboard.
This post will be reported to the moderators as potential spam to be looked at
About https://umbraco.com/blog/security-advisory-10th-december-2019/
Is a site still vulnerable even if, for instance, umbracoDebugMode is not present in the web.config ?
Or in other words, is a site vulnerable even if miniprofiler is not "used" ?
reference: https://our.umbraco.com/forum/umbraco-7/using-umbraco-7/65142-Getting-started-with-miniprofiler-and-Umbraco-7
Hi Teus,
yes, unfortunately you are. There was something during the startup of Umbraco what triggered the miniprofiler. In debug and in production mode.
Have a safe weekend!
Jeffrey
Thanks Jeffrey. a very clear answer.
De beste wensen!
Teus
is working on a reply...
This forum is in read-only mode while we transition to the new forum.
You can continue this topic on the new forum by tapping the "Continue discussion" link below.
Continue discussion
Security Advisory 10th December 2019 Miniprofiler
About https://umbraco.com/blog/security-advisory-10th-december-2019/
Is a site still vulnerable even if, for instance, umbracoDebugMode is not present in the web.config ?
Or in other words, is a site vulnerable even if miniprofiler is not "used" ?
reference: https://our.umbraco.com/forum/umbraco-7/using-umbraco-7/65142-Getting-started-with-miniprofiler-and-Umbraco-7
Hi Teus,
yes, unfortunately you are. There was something during the startup of Umbraco what triggered the miniprofiler. In debug and in production mode.
Have a safe weekend!
Jeffrey
Thanks Jeffrey. a very clear answer.
De beste wensen!
Teus
is working on a reply...
This forum is in read-only mode while we transition to the new forum.
You can continue this topic on the new forum by tapping the "Continue discussion" link below.