Insecure Deserialization in C# (.NET) using NewtonsoftJson
I am working on a Web API that needs to call a 3rd party Web API to achieve some features. That 3rd party’s API’s design is sort of a "God API" such that it takes a generic object type to allow that single API to be used for MANY… Continue reading Insecure Deserialization in C# (.NET) using NewtonsoftJson