03-23-2022, 03:00 PM
Hi all,
I'm trying to find a way to prevent XSS, for example if an user try to write some script in URL of the application.
There is a way to sanitize the input of the value of parameter, removing special characters like ', <, >, ( etc?
For example typing the URL followed by a code (http://127.0.0.1:88/$/StartCheck?<svg/onload=alert(1)>) someone can redirect or execute script in our application.
I'm using 14.2.12 Intraweb version and I tryied to do it in many ways but noone works.
Thanks in advance!
I'm trying to find a way to prevent XSS, for example if an user try to write some script in URL of the application.
There is a way to sanitize the input of the value of parameter, removing special characters like ', <, >, ( etc?
For example typing the URL followed by a code (http://127.0.0.1:88/$/StartCheck?<svg/onload=alert(1)>) someone can redirect or execute script in our application.
I'm using 14.2.12 Intraweb version and I tryied to do it in many ways but noone works.
Thanks in advance!