My Oracle Support Banner

Cross-site Scripting Filter Has Blocked Page : The request is blocked by XSS filter. (Doc ID 2252132.1)

Last updated on JULY 25, 2022

Applies to:

Primavera Unifier - Version and later
Primavera Unifier Cloud Service - Version and later
Information in this document applies to any platform.


On Unifier : version

Expected Result: The user should be able to click on 'Send' to send a workflow record to the next step in the workflow and/or 'Finish Editing' to save the non-workflow record to the database without incident.

Actual Result: Cross-site scripting filter (XSSFilter) has blocked the page. The following Alert is thrown:

The request is blocked by XSS filter. Logging in again may help in some cases. Contact your System Administrator if you are still having problems.

The offending string can be found in the Unifier log files, example:

[[ACTIVE] ExecuteThread: '7' for queue:
'weblogic.kernel.Default (self-tuning)'] ERROR servlet.XSSFilter
Cross-site scripting filter (XSSFilter) has blocked the page '/bp/studio/workflow/form/savedraft' due to POST of name/value pair
'Offending String Will Be Found Here'.~


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.