Hello,
I rolled a scan with Acunetix and the report shows this kind of message for every list created with Fabrik (website name/links has been changed for security purpose) :
Can you please confirm/deny this issues?
Thank you
I rolled a scan with Acunetix and the report shows this kind of message for every list created with Fabrik (website name/links has been changed for security purpose) :
URI was set to "onmouseover='QnuT(9107)'bad="
The input is reflected inside a tag parameter between double quotes.
GET /myfabriklist?"onmouseover='QnuT(9107)'bad=" HTTP/1.1
Referer: https://mywebsite.com
Cookie: b5193a03dc5dbf6ad7e975ae415c7d52=g45k0t0rhba93b546im37uvvm7; joomla_user_state=logged_in
Host: mywebsite.com
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Acunetix-Product: WVS/11.0 (Acunetix - WVSE)
Acunetix-Scanning-agreement: Third Party Scanning PROHIBITED
Acunetix-User-agreement: http://www.acunetix.com/wvs/disc.htm
Accept: */*
Can you please confirm/deny this issues?
Thank you