Cross-site Scripting Filter Has Blocked Page : The request is blocked by XSS filter. (Doc ID 2252132.1)

Last updated on JULY 13, 2017

Applies to:

Primavera Unifier - Version 16.2.0.0 and later
Primavera Unifier Cloud Service - Version 16.2.0.0 and later
Information in this document applies to any platform.

Symptoms

On Unifier : version 16.2.4.0

Expected Result: The user should be able to click on 'Send' to send a workflow record to the next step in the workflow and/or 'Finish Editing' to save the non-workflow record to the database without incident.

Actual Result: Cross-site scripting filter (XSSFilter) has blocked the page. The following Alert is thrown:

The request is blocked by XSS filter. Logging in again may help in some cases. Contact your System Administrator if you are still having problems.

The offending string can be found in the Unifier log files, example:

[[ACTIVE] ExecuteThread: '7' for queue:
'weblogic.kernel.Default (self-tuning)'] ERROR servlet.XSSFilter
...
Cross-site scripting filter (XSSFilter) has blocked the page '/bp/studio/workflow/form/savedraft' due to POST of name/value pair
'Offending String Will Be Found Here'.~

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms