[hobbit] RE: Hobbit Security (Cross-Site Scripting)

Stewart L stewartl42 at gmail.com
Fri Jun 19 17:18:52 CEST 2009

It's usually a bit more complicated that just quoting the user input.   I'm
actually scanning a fresh install with IBM Appscan Enterprise when you
mentioned it... :)

On Fri, Jun 19, 2009 at 11:09 AM, David Cecchino <
david.cecchino at datacure.com> wrote:

>  HP Webinspect scans of xymon show it is vulnerable to XSS , is there  a
> way of putting quotes around the url variables/strings?

An infinite number of mathematicians walk into a bar. The first one orders a
beer. The second orders half a beer. The third, a quarter of a beer. The
bartender says "You're all idiots", and pours two beers.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.xymon.com/pipermail/xymon/attachments/20090619/63eb8662/attachment.html>

More information about the Xymon mailing list