This repository has been archived by the owner on Nov 25, 2021. It is now read-only.
Didn't catch an XSS injection #3
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Why did it not catch this line in my log?
www.myawesomesite.com 202.46.48.11 54.197.85.60 - 2016-12-25T00:13:58Z 1.051 "GET /womens-shoes.html?amp%3Bbenefits=Outdoor&%3Bn0nex1st=%3Cscript%3Ealert(%22SAINTL3dvbWVucy1zaG9lcy5odG1sIG4wbmV4MXN0%22)%3C%2Fscript%3E&benefits=Cold+weather&filterable_color=White&womens_size=9 HTTP/1.1" 200 444 26384 "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.93 Safari/537.36"
The text was updated successfully, but these errors were encountered: