Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Aug 10, 2017

Cross Site Scripting Policy

Does anyone have any templet policies that i can use to help fix cross site scripting?

ASM Advanced WAF

cjunior
Nacreous
Aug 10, 2017
Hello, just adding the specific attack signatures set to the policy (e.g. Cross Site Scripting Signatures), works for you?

Regards.
Piotrek_72347
Nimbostratus
Feb 28, 2018
you need to configure several thing to mitigate Cross site scripting

Attack signatures (“Cross Site Scripting (XSS)”) Parameter meta characters HttpOnly cookie attribute enforcement Parameter type definitions (such as integer)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming