The following scripts all produce false alarms on sites that repeat the
url back as part of a location header in a 302 redirect.
fcgi_echo.nasl script_id(10838)
phproxy_xss.nasl script_id(16069)
ubbthreads_xss.nasl script_id(15951)
Reworking them to test the regex against the body only and not the
header will solve the problem.
Martin...
url back as part of a location header in a 302 redirect.
fcgi_echo.nasl script_id(10838)
phproxy_xss.nasl script_id(16069)
ubbthreads_xss.nasl script_id(15951)
Reworking them to test the regex against the body only and not the
header will solve the problem.
Martin...