Preventing Cross Site Scripting Attacks in Oracle iPlanet Webserver 7.0 (Doc ID 1457522.1)

Last updated on FEBRUARY 09, 2024

Applies to:

Oracle iPlanet Web Server - Version 7.0 to 7.0 [Release 7.0]
Information in this document applies to any platform.

Symptoms

On Oracle iPlanet Web Server 7.0,

while configuring obj.conf to prevent cross site scripting by following Oracle iPlanet Web Server 7.0.9 Administrator's Configuration File Reference Guide - Chapter 7 Controlling Access to Your Server - Preventing Cross Site Scripting Attacks https://docs.oracle.com/cd/E19146-01/821-1828/ghyzd/index.html

The following error might occur:

STEPS
-----------------------
1. Insert this filter in obj.conf to prevent xss cross-site scripting attack

Input fn="insert-filter" method="POST" filter="sed-request" sed="s/(|>)/\\>/gi"

Changes

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Preventing Cross Site Scripting Attacks in Oracle iPlanet Webserver 7.0 (Doc ID 1457522.1)

Applies to:

Symptoms

Changes

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!