Multiple Cross-Site Scripting Vulnerabilities Detected

Document ID : KB000008975
Last Modified Date : 05/04/2018
Show Technical Document Details

After running scan, Multiple Cross-Site Scripting Vulnerabilities Detected in apache pre 2.2.10 in several modules

DevTest 10.1.0 on all supported platforms.

Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by attackers to bypass access controls such as the same-origin policy.



We have a fix for this.

Open a new CA Support case and refer to defect DE333671.

If you facing this issue with DevTest on release 9.1 or 9.0. Please, consider upgrading DevTest Enterprise Dashboard to release 10.x.
Since DevTest on release 9.1 and 9.0 are not supported anymore, we would not be able to provide a patch for these releases.