Menu

Topic-icon XSS filter hits in search bar

More
2 months 3 weeks ago - 2 months 3 weeks ago #9127 by solv
XSS filter hits in search bar was created by solv
Hi,
Can somebody tell me why the word "Personendaten" ("personal data" in German) triggers the XSS filter when entered in the search bar on our site? I'm using the Smart Search plug-in (com_finder). See below: 

How come it thinks it's an XSS attack, especially when any other search word works fine? 

Thank you, 

Philippe
Attachments:
Last edit: 2 months 3 weeks ago by solv.

Please Log in or Create an account to join the conversation.

More
2 months 3 weeks ago #9128 by Jose
Replied by Jose on topic XSS filter hits in search bar
Hi Philippe,

It's quite odd, as the xss filter only looks for hmtl tags (all or only selected from a list). Can you please export and send me the log file when this happens?

Regards,
Jose

Please Log in or Create an account to join the conversation.

More
2 months 3 weeks ago - 2 months 3 weeks ago #9129 by solv
Replied by solv on topic XSS filter hits in search bar
Hi Jose
I have exported the list. Is it that, what you need?By the way, I've updated the plug-in a few days ago. The problem still exists, and unfortunately, a new one arose. I will start a new topic for this.

Best regards, Philippe 
Attachments:
Last edit: 2 months 3 weeks ago by Jose. Reason: Delete attachment to avoid information disclosure

Please Log in or Create an account to join the conversation.

More
2 months 3 weeks ago #9132 by Jose
Replied by Jose on topic XSS filter hits in search bar
Hi Philippe,

This will be solved in the next version. One part of that word matched with some javascript events I checked and that was why you got the alert.

Regards,
Jose
The following user(s) said Thank You: solv

Please Log in or Create an account to join the conversation.

Time to create page: 0.105 seconds
Powered by Kunena Forum

Login or Sign In