Product Enhancements
1.1 Pagination Support for the Attachment Tab
#ID 1358149
The Attachments tab in Project case types now includes pagination support for the filing structure, significantly improving load times when cases contain large volumes of attachments.
With this update, the filing structure loads records in pages of 100, enabling the tab to open within approximately one minute even for cases with 3,000 to 5,000 or more attachments.
Security Updates
We’ve addressed the following security updates in this version of eCase Platform:
ID | Description |
|---|
1420580 | Resolved an Insecure Direct Object Reference (IDOR) vulnerability in the Portal by enforcing proper authorization checks on message access, preventing users from viewing or modifying other users' messages through ID manipulation. |
1423466 | Addressed improper error handling in the eCase Public Portal that exposed detailed server error information. Generic error responses are now enforced to prevent disclosure of internal system and framework details. |
1423491 | Resolved an issue in the Forgot Password flow where response differences could reveal whether a username exists. A single generic response is now returned to prevent user enumeration and targeted attacks. |
1432755 | Addressed an issue where manipulating message IDs in the URL could allow unauthorized access to other users' messages. Proper authorization checks are now enforced to ensure users can access only their own data. |
1434238 | Resolved an information disclosure issue where the application exposed underlying ASP.NET framework version details in HTTP responses. Version information is now suppressed to reduce attack surface. |