Skip to content

Comments

959914: Resolved the network team shared security issue in SQL provider of file manager component. #40

Merged
Indhumathy-Loganathan merged 2 commits intomasterfrom
959914-SecurityIssues
Oct 13, 2025
Merged

959914: Resolved the network team shared security issue in SQL provider of file manager component. #40
Indhumathy-Loganathan merged 2 commits intomasterfrom
959914-SecurityIssues

Conversation

@ArulmozhiSF4964
Copy link
Collaborator

@ArulmozhiSF4964 ArulmozhiSF4964 commented Sep 17, 2025

Bug description

981657 - Need to handle the security issues in File Manager SQL providers.

Root cause

No reproducible issues are shared. However as per the network team scanning report validated the issues.

Solution description

As per the Syncfusion AI modified the service provider model file.

Impact assessment

  • Low - Affects a single feature with minimal user impact
  • Medium - Affects multiple features or has moderate user impact
  • High - Critical functionality or significant user impact

Reason for not identifying earlier

Areas tested against this fix

  • Ensured all the basic functionality of the filemanager component
  • Verified single file download functionality
  • Verified multiple files and folder download functionality
  • Verified nested folder download functionality
  • Validated download using key action.
  • Tested files with special characters in their names for download
  • Verified long file name handling during download
  • Checked Unicode and non-ASCII character file names for proper download and delete behavior
  • Validated that access control rules successfully restrict download permissions for individual file and folder and nested directory structures
  • Confirmed download action in both chrome and edge browsers  

Breaking changes

  • Yes
  • No

If yes, provide breaking commit details link and migration guidance.

Regression testing

  • Verified fix doesn't reintroduce previous bugs
  • Checked edge cases and error scenarios
  • NA

Action taken to prevent recurrence

  • Added/updated unit tests
  • Other (specify): _________________
  • NA

Automation status

  • BUnit (provide PR link: _________________)
  • Playwight (provide PR link: _________________)
  • NA

Cross-platform verification

  • Blazor Server
  • Blazor WASM
  • NA

Related issues

Is this issue present in EJ2 or other components?

  • Resolved in EJ2 (PR link: _________________)
  • Created task for EJ2 (Task link: _________________)
  • Needs attention in other components (tag needs-attention-coreteam)
  • NA

Output screenshots

API changes

  • New API added (API Review task link: _________________)
  • Existing API renamed/modified (API Review task link: _________________)
  • No API changes

Performance verification

  • Verified no memory leaks introduced
  • Verified no performance degradation
  • Not applicable

Reviewer Checklist

  • Code changes follow component guidelines
  • All provided information reviewed and verified
  • Solution addresses the root cause effectively

@Indhumathy-Loganathan Indhumathy-Loganathan merged commit 89bdbd1 into master Oct 13, 2025
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Development

Successfully merging this pull request may close these issues.

2 participants