XSS Vulnerability Report

3 posts by 2 authors in: Forums > CMS Builder
Last Post: August 12   (RSS)

By dwellingproductions - August 10

Hi all! My client recently received a report of a potential XSS vulnerability related to the CMS Builder login page. I'm not sure if there's any validity to this or if it's anything to be concerned with, but I thought I'd reach out and get your advice. Here's the vulnerability report:

https://www.openbugbounty.org/reports/2613835/

It looks like they are inserting script tags in the URL. Perhaps there's a way to disallow this via the .htaccess file?

Any input is appreciated. :-)

Thanks in advance,
Jeremy

---------------------------

Dwelling Productions

www.dwellingproductions.com

By dwellingproductions - August 12

Awesome! Thanks so much! That seems to have done the trick. I'll keep an eye out for future updates as well. Really appreciate it! :-)

All the best,
Jeremy

---------------------------

Dwelling Productions

www.dwellingproductions.com