Forum OpenACS Q&A: Response to Bugtraq: cross site scripting

Collapse
2: Response to Bugtraq: cross site scripting (response to 1)
Posted by Jon Griffin on 03/27/02 07:52 PM
I haven't tried in a while, but I believe that we are NOT vulnerable since we don't allow most html and the request processor eliminates these problems.

I think there was another thread about this a while ago.