Forum Discussion
MattAlex1
Altocumulus
AltocumulusHTML Code injection Not detected by ASM
There was PT conducted on our application and was reported to be HTML injection vulnerable. URL used for evidence of exploitation is: https://abc.com/SimpleSamples812/ChatWidget/ChatPanel.aspx?Back...
Amine_Kadimi
MVP
MVPI can confirm this is blocked by F5. %00 generates a http compliance failed (null in request) violation. Meta characters also generate an illegal metacharacter in value violation. Check your policy settings and enforcement.
