Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
C
C
cyberlain2021-01-29 18:22:11
1C-Bitrix
cyberlain, 2021-01-29 18:22:11

Question for bitrix programmers: how did you solve problems with Cross-Site Scripting?

Launched a security scanner that revealed problems of this kind

Cross-Site Scripting
File: /home/bitrix/ext_www/sitename/bitrix/templates/market_column_1/bxready/library/elements/ecommerce_v1/element.php

303: echo $_COOKIE['_ym_uid']
Необходимые условия:
90: if($arElement['IBLOCK_SECTION_ID'] !== "869")
Аналогично:
311: echo $_COOKIE['_ym_uid']
319: echo $_COOKIE['_ym_uid']


and the static analyzer dug up 10 such jambs.

What does this mean and how do you deal with it?

ps: I wish you all good health, a lot of love and money, and not to face Bitrix yet

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Alexey Emelyanov, 2021-01-29
@babarun

You are parsing a third party custom template, not the core, so the question should be addressed to them.

Similar questions
V
Vladimir2017-05-23 10:35:23
Why is the checkbox not working on the form? 2Reply
V
Victoria Erofeeva2021-04-24 14:05:45
How to set a reference type property for an infoblock element via the Bitrix API? 0Reply
I
I'm Yoda2019-10-24 07:16:22
How to write a query to filter trade offers? 1Reply
S
Sergey Minaev2017-05-23 21:57:07
Install Apple Pay on the site? 2Reply
D
Diversia2017-05-25 08:47:21
How to change resizeType in infoblock for detailed and preview images in Bitrix? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question