Re^2: Need help figure out this Security vulnerability on this cgi code


XP is just a number
	PerlMonks

Re^2: Need help figure out this Security vulnerability on this cgi code

by planetscape (Chancellor)

on Apr 01, 2012 at 04:29 UTC ( [id://962830]=note: print w/replies, xml )

Need Help??

in reply to Re: Need help figure out this Security vulnerability on this cgi code
in thread Need help figure out this Security vulnerability on this cgi code

Well, one seems to be dealing with airline carriers, the other with some sort of scheduling app.

HTH,

planetscape

Comment on Re^2: Need help figure out this Security vulnerability on this cgi code

Replies are listed 'Best First'.
Re^3: Need help figure out this Security vulnerability on this cgi code by Anonymous Monk on Apr 01, 2012 at 04:50 UTC
Well..It's all fromm the same App...the Security vulnerability reported by the Appscan is different & on another cgi Script...This according to the CWE-ID :598 "Information Exposure Through Query Strings in GET Request-The web application uses the GET method to process requests that contain sensitive information, which can expose that information through the browser's history, Referers, web logs, and other sources. "	[reply]
Re^4: Need help figure out this Security vulnerability on this cgi code by Anonymous Monk on Apr 01, 2012 at 05:25 UTC
Well..It's all fromm the same App...the Security vulnerability reported by the Appscan is different & on another cgi Script Well, the answer doesn't change much, fix your html templates to appease "Appscan"	[reply]

In Section Seekers of Perl Wisdom

Log In^?

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://962830]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others meditating upon the Monastery: (4)

As of 2024-04-20 03:42 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found