Currently, MAX_STRING_LENGTH (logics-py) / maxStringLength (logics-js) are not enforced in all situations and can be bypassed. This vulnerability should be closed in favor of security.
This issue serves as a documentation of several vulnerable problems relating the limitation settings.
Currently,
MAX_STRING_LENGTH(logics-py) /maxStringLength(logics-js) are not enforced in all situations and can be bypassed. This vulnerability should be closed in favor of security.This issue serves as a documentation of several vulnerable problems relating the limitation settings.