Uploaded image for project: 'WORKTERRA'
  1. WORKTERRA
  2. WT-4632

[Security Test - Web] {Cross Site Scripting} Employee Search page shows server error when any script is provided as input to Search Employee field.

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open
    • Priority: Low
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
    • Environment:
      Production
    • Bug Severity:
      Low
    • Module:
      BenAdmin - Security
    • Reported by:
      Harbinger

      Description

      [Security Test - Web] Employee Search page shows server error when any script is provided as input to Search Employee field.

      Malicious user can enter any scripts through application to generate Server Errors.

      Test Environment: Production - VM 208...
      Tool Used : Tamper Data - Fire Fox plugin

        Attachments

          Activity

            People

            Assignee:
            samir Samir
            Reporter:
            prasadp Prasad Pise (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: