CGDevTools Forum

Welcome to the Official CGDevTools Support Community Forums.

Board indexIWCGjQuery SuiteGeneral

Reflected Cross-Site scripting (XSS)

Post a reply

Reflected Cross-Site scripting (XSS)

by MarcoRu » 17 Mar 2022 15:31

Hi all,
I'm trying to find a way to prevent XSS, for example if an user try to write some script in URL of the application.
There is a way to sanitize the input of the value of parameter, removing special characters like ', <, >, ( etc?
For example typing the URL followed by a code (http://127.0.0.1:88/$/StartCheck? < svg/onload=alert(1)>) someone can redirect or execute script in uor application.
Thanks in advance!
MarcoRu
 
Posts: 41
Joined: 23 Sep 2014 16:39

Re: Reflected Cross-Site scripting (XSS)

by joelz » 22 Mar 2022 15:13

I am not sure what version of iw you are using, but I suggest you post this in the newgroups at atozed.com.
joelz
 
Posts: 74
Joined: 14 Mar 2013 13:54
Post a reply

Return to General

Powered by phpBB® Forum Software © phpBB Group

Who is online

Users browsing this forum: No registered users and 3 guests

Contact Us.

+351 231 209 530
+351 910 240 959
 

Av. Cidade de Coimbra, 92/94
3050-374 Mealhada
 
info@cgdevtools.com
 

View new posts