AnsweredAssumed Answered

Cross Site Attacking on http://localhost:8080/share/service/

Question asked by kevingo on Jul 26, 2011
Hello, our Alfresco application ( which is Alfresco Community 4.0 ) has been detect a cross site attacking with the following URL :

http://localhost:8080/share/service/components/form
http://localhost:8080/share/service/modules/header/sites

Both the parameter is htmlid. My question is, does anyone know the location of the previous js file that I can add the escape function when the url requesting is coming?

Thanks for your help.

Outcomes