on 07-14-2016 2:55 PM
Hi Baji,
NW-VSI can help you detect XSS in files, so for instance Javascript embedded in an HTML file that's being uploaded (or other file formats vulnerable to XSS, think SVG for example).
Your virus scanning solution hooked up with VSI should detect and block such files if you configure the virus scan profile to include the settings to block active content (CUST_ACTIVECONTENT = 1)
If you would like to block XSS in Webforms, then VSI (Virus Scanning Interface) will not help you. For that, you will actually need a solution that plugs into the CSI (Content Scanning Interface).
I'll be happy to share more details on that. Pls contact me directly for that as I don't want to go off-topic here.
Best
Joerg
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
95 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.