#aspnet-core tag

Microsoft released an emergency patch for ASP.NET Core to fix a high-severity vulnerability allowing unauthenticated attackers to gain SYSTEM privileges.

Information security

fromThe Hacker News

1 day ago

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

Microsoft released updates to fix a critical security vulnerability in ASP.NET Core that allows privilege escalation for unauthorized attackers.

Software development

fromTechzine Global

2 weeks ago

End of support approaches for ASP.NET Core 2.3 on the .NET framework

ASP.NET Core 2.3 will end support on April 7, 2027, ceasing security updates and technical support.

Software development

fromTheregister

2 weeks ago

Microsoft calls time on ASP.NET Core 2.3 on .NET Framework

Microsoft will end support for ASP.NET Core 2.3 on April 7, 2027, urging users to upgrade to modern ASP.NET on .NET 10.

fromInfoQ

9 months ago

Web development

.NET 10 Preview 5 Brings Blazor Observability, XAML Simplification and More

Microsoft announces end of support for ASP.NET Core 2.3

ASP.NET Core 2.3 will reach end of life support on April 7, 2027, with no further updates or support provided thereafter.

Web frameworks

fromInfoWorld

1 month ago

Microsoft's .NET 11 Preview 2 offers cleaner stack traces

.NET 11 libraries introduce TarFile.CreateFromDirectory overloads supporting Pax, Ustar, GNU, and V7 tar formats, alongside performance improvements in ASP.NET Core, F#, .NET MAUI, and Entity Framework Core.

Web frameworks

fromInfoQ

4 months ago

ASP.NET Core in .NET 10: Major Updates Across Blazor, APIs, and OpenAPI

ASP.NET Core in .NET 10 delivers major improvements across Blazor, Minimal APIs, OpenAPI generation, authentication, diagnostics, runtime behavior, and security.

Artificial intelligence

fromTheregister

5 months ago

Google previews Code Wiki, AI to document repositories

Code Wiki automatically generates and updates repository documentation, offers a chat interface for code questions, and is being extended to Gemini CLI for internal use.

fromInfoQ

5 months ago

Microsoft Patches Critical ASP.NET Core Vulnerability with 9.9 Severity Score

The vulnerability has been identified in ASP.NET Core versions 10.0, 9.0, 8.0, and the Kestrel package for 2.x. An attacker who is already authorized can bypass a security feature by exploiting inconsistent parsing of HTTP requests and responses. Microsoft states there are no known mitigating factors for the HTTP request/response smuggling scenario and strongly recommends patching to the listed fixed versions to prevent the security bypass.

Information security

#dependency-injection

fromInfoWorld

5 months ago

Web development

How to use keyed services in ASP.NET Core

fromSitePoint Forums | Web Development & Design Community

11 months ago

Bootstrapping

Issue calling Crud Operation Methods in DAL From API Controllers

fromInfoWorld

5 months ago

Web development

How to use keyed services in ASP.NET Core

fromSitePoint Forums | Web Development & Design Community

11 months ago

Bootstrapping

Issue calling Crud Operation Methods in DAL From API Controllers

more#dependency-injection

Information security

fromTheregister

6 months ago

Microsoft patches ASP.NET Core bug rated highly critical

A critical Kestrel request smuggling vulnerability in ASP.NET Core (CVE-2025-55315) can hide requests to bypass authentication and security checks; patch urgently.

Web frameworks

fromInfoWorld

6 months ago

How to use CORS in ASP.NET Core minimal APIs

CORS governs browser-enforced cross-origin HTTP request rules, allowing safe cross-origin resource sharing while preventing malicious cross-origin script attacks.

#minimal-apis

fromInfoWorld

7 months ago