{"id":2851,"date":"2014-03-28T11:20:10","date_gmt":"2014-03-28T11:20:10","guid":{"rendered":"https:\/\/dn-www.azurewebsites.net\/2014\/03\/28\/reproducing-an-umbraco-remote-code-execution-vulnerability\/"},"modified":"2024-03-18T15:40:48","modified_gmt":"2024-03-18T15:40:48","slug":"reproducing-an-umbraco-remote-code-execution-vulnerability","status":"publish","type":"post","link":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/","title":{"rendered":"Reproducing an Umbraco Remote Code Execution Vulnerability"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/<\/a>). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based infrastructure. Doing some research looking for vulnerabilities I found that last year a critical flaw was reported by MWR Labs after doing a security audit on the CMS:<\/p>

https:\/\/umbraco.com\/follow-us\/blog-archive\/2013\/4\/29\/security-vulnerabili…<\/a>
https:\/\/labs.mwrinfosecurity.com\/advisories\/2013\/11\/29\/umbraco-cms-templ&#8230<\/a>;<\/p>

Even though they did not go into too much detail about the vulnerability, they mentioned a few key things that fortunately were enough to successfully reproduce the issue locally. I thought it would be interesting to share my findings, and hopefully help web developers as well as security consultants to understand the importance of small details and subtleties that can be overlooked when programming a new piece of code, but that can lead to the compromise of the system.<\/p>

In the description of the vulnerability they mention that the flaw affects all versions prior to 6.0.4. The Umbraco developers made a good job fixing it promptly, and thus recent versions do not contain this security flaw anymore. For this reason the tests were carried out using an old vulnerable version of the CMS (6.0.3) available for download in the following link.<\/p>

https:\/\/github.com\/umbraco\/Umbraco-CMS\/tree\/release-6.0.3<\/a><\/p>

Once we have downloaded the source code, built the project and followed the installation instructions, we will end up with a neat and simple website similar to the one shown below:<\/p>

\"image<\/p>

With the knowledge that Umbraco comes with a number of web services enabled by default, we should be able to access their description by just browsing to the adequate .asmx file. As we can see in the image below, the \u201cupdate\u201d operation of the \u201ctemplateService” web service is available. This is the operation that was reported to be vulnerable, so we will focus on it from now on.<\/p>

\"image<\/p>

If we follow the “update” link we will see another page that shows sample SOAP requests for this operation.<\/p>

\"image<\/p>

Before we craft a SOAP request, let’s first take a look behind the scenes and find out what is going on in the server-side code. The source code in charge of handling the TemplateService Web Service can be found at:<\/p>

.\/Umbraco-CMS-release-6.0.3\/src\/umbraco.webservices\/templates\/templateService.cs<\/code><\/div>

If we open that file and scroll down to the \u201cupdate\u201d method we will find the following code.<\/p>

[WebMethod]
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 public void update(templateCarrier carrier, string username, string password)
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 {
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if (carrier.Id == 0) throw new Exception(\"ID must be specifed when updating\");
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 if (carrier == null) throw new Exception(\"No carrier specified\"); <\/code><\/p>

\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 cms.businesslogic.template.Template template;
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 try
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 {
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 template = new cms.businesslogic.template.Template(carrier.Id);
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 }
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 catch (Exception)
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 {
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 throw new Exception(\"Template with ID \" + carrier.Id + \" not found\");
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 }<\/code><\/p>

<\/code><\/p>

\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 template.MasterTemplate = carrier.MastertemplateId;
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 template.Alias = carrier.Alias;
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 template.Text = carrier.Name;
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 template.Design = carrier.Design;
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 template.Save();<\/code><\/p>

<\/code><\/p>

\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 clearCachedTemplate(template);
\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 }<\/code><\/p><\/div>

As we can see, the method is expecting information about the template to update as well as a username and a password, but they do not use the username and password information anywhere within the method to verify that the user who is requesting the operation is authorized. That makes this operation accessible to unauthorized users, who can overwrite the content of an existing template and add arbitrary content.<\/p>

To reproduce the vulnerability we will use the previous SOAP template to craft a request to the web service, this is shown below:<\/p>

\"image<\/p>

Note that the username and password values are not important, as they are not validated in the server. Also, note that a valid template ID was provided, although this can be easily guessed or brute-forced, for the sake of brevity a valid one was grabbed from the admin panel.<\/p>

After we send the request, the server returns the following response:<\/p>

\"image<\/p>

And if we browse to the homepage…<\/p>

\"image<\/p>

Voil\u00e0! The main template was modified with the content we sent, and thus the homepage.<\/p>

To sum up, we have successfully been able to locally reproduce a vulnerability that was relatively recent. This vulnerability takes advantage of a slip in the development that let unauthenticated users make web service requests to overwrite existing files with arbitrary content, and thus potentially gaining control of the server and other internal systems. From the developers and system administrators point of view this is a clear example of how vital it is to develop and deploy all our systems with a security mindset; a little nuance like this one can leave our systems exposed to malicious users. From the penetration tester point of view, it is important to note that whenever possible, and within the time limitations we face during most of the tests we do, we should test every single bit of each application, and not just assume that because the developers have secured a part of the application, they have done the same with everything else. \u00a0<\/p>

\u00a0<\/p><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/<\/a>). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"content-type":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[215,207],"class_list":["post-2851","post","type-post","status-publish","format-standard","hentry","category-researchblog","tag-vulnerabilities","tag-web_applications","wpbf-post"],"contentshake_article_id":"","yoast_head":"\nReproducing an Umbraco Remote Code Execution Vulnerability<\/title>\n<meta name=\"description\" content=\"During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based \" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Reproducing an Umbraco Remote Code Execution Vulnerability\" \/>\n<meta property=\"og:description\" content=\"During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based \" \/>\n<meta property=\"og:url\" content=\"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/\" \/>\n<meta property=\"og:site_name\" content=\"Dionach\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/dionachcyber\" \/>\n<meta property=\"article:published_time\" content=\"2014-03-28T11:20:10+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-03-18T15:40:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/dionach.com\/wp-content\/uploads\/2025\/02\/cropped-Dionach-vertical-col-yel-nomios-black-1.jpg?fit=512%2C512&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"512\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Dionach Admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@dionachcyber\" \/>\n<meta name=\"twitter:site\" content=\"@dionachcyber\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Dionach Admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/\"},\"author\":{\"name\":\"Dionach Admin\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#\\\/schema\\\/person\\\/e73f3537233924cf4944f7807068b3c8\"},\"headline\":\"Reproducing an Umbraco Remote Code Execution Vulnerability\",\"datePublished\":\"2014-03-28T11:20:10+00:00\",\"dateModified\":\"2024-03-18T15:40:48+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/\"},\"wordCount\":747,\"publisher\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#organization\"},\"keywords\":[\"vulnerabilities\",\"web applications\"],\"articleSection\":[\"researchblog\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/\",\"url\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/\",\"name\":\"Reproducing an Umbraco Remote Code Execution Vulnerability\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#website\"},\"datePublished\":\"2014-03-28T11:20:10+00:00\",\"dateModified\":\"2024-03-18T15:40:48+00:00\",\"description\":\"During a recent penetration test I came across a website running Umbraco CMS (https:\\\/\\\/umbraco.com\\\/). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based \",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/reproducing-an-umbraco-remote-code-execution-vulnerability\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Reproducing an Umbraco Remote Code Execution Vulnerability\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#website\",\"url\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/\",\"name\":\"Dionach\",\"description\":\"Real Security in a Virtual World\",\"publisher\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#organization\",\"name\":\"Dionach\",\"url\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.dionach.com\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/cropped-Dionach-vertical-col-yel-nomios-black-1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.dionach.com\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/cropped-Dionach-vertical-col-yel-nomios-black-1.jpg\",\"width\":512,\"height\":512,\"caption\":\"Dionach\"},\"image\":{\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/dionachcyber\",\"https:\\\/\\\/x.com\\\/dionachcyber\",\"https:\\\/\\\/uk.linkedin.com\\\/company\\\/dionach-ltd\",\"https:\\\/\\\/www.instagram.com\\\/dionachcyber\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/dionach.com\\\/en-us\\\/#\\\/schema\\\/person\\\/e73f3537233924cf4944f7807068b3c8\",\"name\":\"Dionach Admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3061726a64a760303f6ea8f0976d3e8e0a6997b4da543be9a650b81584b4e79e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3061726a64a760303f6ea8f0976d3e8e0a6997b4da543be9a650b81584b4e79e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3061726a64a760303f6ea8f0976d3e8e0a6997b4da543be9a650b81584b4e79e?s=96&d=mm&r=g\",\"caption\":\"Dionach Admin\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Reproducing an Umbraco Remote Code Execution Vulnerability","description":"During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based ","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/","og_locale":"en_US","og_type":"article","og_title":"Reproducing an Umbraco Remote Code Execution Vulnerability","og_description":"During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based ","og_url":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/","og_site_name":"Dionach","article_publisher":"https:\/\/www.facebook.com\/dionachcyber","article_published_time":"2014-03-28T11:20:10+00:00","article_modified_time":"2024-03-18T15:40:48+00:00","og_image":[{"width":512,"height":512,"url":"https:\/\/i0.wp.com\/dionach.com\/wp-content\/uploads\/2025\/02\/cropped-Dionach-vertical-col-yel-nomios-black-1.jpg?fit=512%2C512&ssl=1","type":"image\/jpeg"}],"author":"Dionach Admin","twitter_card":"summary_large_image","twitter_creator":"@dionachcyber","twitter_site":"@dionachcyber","twitter_misc":{"Written by":"Dionach Admin","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/#article","isPartOf":{"@id":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/"},"author":{"name":"Dionach Admin","@id":"https:\/\/dionach.com\/en-us\/#\/schema\/person\/e73f3537233924cf4944f7807068b3c8"},"headline":"Reproducing an Umbraco Remote Code Execution Vulnerability","datePublished":"2014-03-28T11:20:10+00:00","dateModified":"2024-03-18T15:40:48+00:00","mainEntityOfPage":{"@id":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/"},"wordCount":747,"publisher":{"@id":"https:\/\/dionach.com\/en-us\/#organization"},"keywords":["vulnerabilities","web applications"],"articleSection":["researchblog"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/","url":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/","name":"Reproducing an Umbraco Remote Code Execution Vulnerability","isPartOf":{"@id":"https:\/\/dionach.com\/en-us\/#website"},"datePublished":"2014-03-28T11:20:10+00:00","dateModified":"2024-03-18T15:40:48+00:00","description":"During a recent penetration test I came across a website running Umbraco CMS (https:\/\/umbraco.com\/). Umbraco is an open source content management system for publishing content on the World Wide Web and intranets. It is written in C# and deployed on Microsoft based ","breadcrumb":{"@id":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/dionach.com\/en-us\/reproducing-an-umbraco-remote-code-execution-vulnerability\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/dionach.com\/en-us\/"},{"@type":"ListItem","position":2,"name":"Reproducing an Umbraco Remote Code Execution Vulnerability"}]},{"@type":"WebSite","@id":"https:\/\/dionach.com\/en-us\/#website","url":"https:\/\/dionach.com\/en-us\/","name":"Dionach","description":"Real Security in a Virtual World","publisher":{"@id":"https:\/\/dionach.com\/en-us\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/dionach.com\/en-us\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/dionach.com\/en-us\/#organization","name":"Dionach","url":"https:\/\/dionach.com\/en-us\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/dionach.com\/en-us\/#\/schema\/logo\/image\/","url":"https:\/\/www.dionach.com\/wp-content\/uploads\/2025\/02\/cropped-Dionach-vertical-col-yel-nomios-black-1.jpg","contentUrl":"https:\/\/www.dionach.com\/wp-content\/uploads\/2025\/02\/cropped-Dionach-vertical-col-yel-nomios-black-1.jpg","width":512,"height":512,"caption":"Dionach"},"image":{"@id":"https:\/\/dionach.com\/en-us\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/dionachcyber","https:\/\/x.com\/dionachcyber","https:\/\/uk.linkedin.com\/company\/dionach-ltd","https:\/\/www.instagram.com\/dionachcyber\/"]},{"@type":"Person","@id":"https:\/\/dionach.com\/en-us\/#\/schema\/person\/e73f3537233924cf4944f7807068b3c8","name":"Dionach Admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/3061726a64a760303f6ea8f0976d3e8e0a6997b4da543be9a650b81584b4e79e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/3061726a64a760303f6ea8f0976d3e8e0a6997b4da543be9a650b81584b4e79e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3061726a64a760303f6ea8f0976d3e8e0a6997b4da543be9a650b81584b4e79e?s=96&d=mm&r=g","caption":"Dionach Admin"}}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/ph4Ojq-JZ","_links":{"self":[{"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/posts\/2851","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/comments?post=2851"}],"version-history":[{"count":0,"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/posts\/2851\/revisions"}],"wp:attachment":[{"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/media?parent=2851"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/categories?post=2851"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dionach.com\/en-us\/wp-json\/wp\/v2\/tags?post=2851"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}