Cross site scripting
-
Hi guys,
A web page i’ve built for a customer went through a ACUNETIX security test. And this is the alert it has shown. Do you have any idea how can i resolve this.
URL encoded GET input mdf_cat was set to 15″ lH5z=lguV([!+!]) Ufz=”
The input is reflected inside a tag parameter between double quotes.I could not attach the link to the site cause the client doesnt want to publish it before passing these alerts.
Thank you so much in advance.
Viewing 3 replies - 1 through 3 (of 3 total)
-
First thank you so much for your quick response.
While adding the (int) i realized that the code that in the second image (you have sent)
in my code doesnt contain [‘mdf_cat’] at all (see attached image).
Can this be a reason?
[image] https://ibb.co/ScBMkhp
Viewing 3 replies - 1 through 3 (of 3 total)
- The topic ‘Cross site scripting’ is closed to new replies.
