Vulnerability in EPiServer.Forms
By coincidence, I discovered a strange behaviour in Episerver CMS routing (v184.108.40.206). Let's say my site has multiple languages: Dutch and English. I have translated the same page into both of these languages and so I have 2 different URL's:
It turns out that the following URL is also working for the Dutch version: http://localhost:51481/services/cadac-geavanceerde-ondersteuning.
So, if I replace a part of the Dutch URL with the English version, it's still working and not giving a 404. Any idea how this can be possible and how to avoid this?
I don't have any fallback languages configured. The primary language is Dutch.