This project is read-only.

Security Question

Topics: Controls, Themes
Sep 21, 2015 at 7:24 PM
How secure is blogengine in reality? Is an adversary able to develop their own widget, extension or theme, publish it to the repository for people to download, and then further control the application pool in which the blog is running and take control of the identity the app pool is running under?