Answer the question
In order to leave comments, you need to log in
V
V
Vitaliy Semyanchuk2014-01-20 17:15:08
Vitaliy Semyanchuk, 2014-01-20 17:15:08
What does the xss vulnerability mean in my case, discovered through Acunetix?
Good afternoon.
I'm finishing up a project, and the question arose of checking the entire site for security. I took the Acunetix program, scanned it and saw a message that there is an xss vulnerability on one of the
pages
:
this request and if it is dangerous.Also,
maybe someone knows a program to scan the site for security.Thanks
.
3 answer(s)
@Dataway
@dmitry4623
D
Dataway, 2014-10-22 @Dataway
As an option, a false positive of the scanner.
Of the scanners, I can advise Metasploit / Burp Suite, but in general it is better to order a comprehensive audit from specialists if the hacking of the site brings financial or reputational risks.
D
dmitry4623, 2019-01-15 @dmitry4623
It is not very clear what kind of page and what kind of parameter. If this is, say, the transfer of data from user input to where xss can be picked up by the administrator, then it’s bad, and they can steal the admin session.
Generally speaking, Acunetix reports are not very clear. Take a look at Detectify, they describe the risks better. Or METASCAN.ru - a domestic project, they make understandable reports in Russian.
In general, without facts it is difficult to give an exact answer.
Similar questions
R
Y
I
I
I
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question