Visual Studio Magazine

What's Next for ASP.NET Core and Blazor

Since its inception as an intriguing experiment in leveraging WebAssembly to enable dynamic web development with C#, Blazor has evolved into a mature, fully featured framework. Integral to the ASP.NET ...
The Hacker News

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges. The vulnerability, tracked as CVE-2026-40372, ...
Neowin

IT admins can now check the status of Secure Boot in Windows devices across their firm

Microsoft is making it easier for IT admins to monitor the status of Secure Boot on Windows devices across their organization. Secure Boot has been a pretty hot topic for Microsoft lately, especially ...
InfoQ

ASP.NET Core in .NET 10: Major Updates across Blazor, APIs, and OpenAPI

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
InfoQ

.NET 10 Officially Released with Major Performance, AI, and Developer Experience Improvements

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Bleeping Computer

Microsoft fixes highest-severity ASP.NET Core flaw ever

Earlier this week, Microsoft patched a vulnerability that was flagged with the "highest ever" severity rating received by an ASP.NET Core security flaw. This HTTP request smuggling bug (CVE-2025-55315 ...
SecurityWeek

‘Highest Ever’ Severity Score Assigned by Microsoft to ASP.NET Core Vulnerability

CVE-2025-55315 is an HTTP request smuggling bug leading to information leaks, file content tampering, and server crashes. Microsoft’s October Patch Tuesday updates addressed a critical-severity ...
InfoWorld

How to use CORS in ASP.NET Core minimal APIs

How to configure the CORS middleware for minimal APIs and enable secure cross-origin resource sharing in your ASP.NET Core applications. ASP.NET Core offers a simplified hosting model, called minimal ...
GitHub

Call a web API from ASP.NET Core Blazor

This article describes how to call a web API from a Blazor app. In-memory distributed token caches are created when calling xref:Microsoft.Identity.Web ...
Dark Reading

Microsoft: Thousands of Public ASP.NET Keys Allow Web Server RCE

Website developers are unwittingly putting their companies at risk by incorporating publicly disclosed ASP.NET machine keys from code documentation and repositories into their applications, Microsoft ...
Bleeping Computer

Microsoft says attackers use exposed ASP.NET keys to deploy malware

Microsoft warns that attackers are deploying malware in ViewState code injection attacks using static ASP. NET machine keys found online. As Microsoft Threat Intelligence experts recently discovered, ...
Visual Studio Magazine

Meet the New .NET -- Nothing Like the Old .NET

If you've been following the .NET coverage on this site from just the past month -- for instance, ".NET 10 Preview 3 Adds Native Container Publishing, ".NET 10 Preview 4 Focuses on ASP.NET Core, ...