Site Failing Security Test. Need Fix to pass. Scripting prob

Hello. My site has failed a recent security test from Security Metrics. I am copying an email sent to me describing how to fix the issue to achieve a passing report. I will also attach a copy of the report. I need the site fixed so that the site gets a passing grade.

Please take a look.


Possible cross site scripting on

[url removed, login to view] [url removed, login to view]

<https://combinedenergyservices.com/achpay_check.php> Use the following

commands to verify this: wp --inject

"[url removed, login to view]

[url removed, login to view]


<[url removed, login to view];city=%22>

POST curl -L -k -d "routing_number=%22%3E%3Cscript%3Ealert%2

8123%29%3C%2Fscript%3E&city=" "[url removed, login to view]


<[url removed, login to view]%7C> grep "123"

This website may have other injection related vulnerabilities.

Typically, with cross site scripting, you will want to make sure that

the page source being returned by the web server is properly validated

and that we are not seeing any injected scripts returning unsanitized in

the page source. You will need to make sure that all user input is

properly validated.

[url removed, login to view]

[url removed, login to view]


the site is located at:

[url removed, login to view]

Please Help.

Taidot: Tietoturva

Näytä lisää: grep 123 injection fix, test user, microsoft computer fix website, want make web, lt security, ibm user, ibm email, ibm at, 3c test, website security test, web test, we security, vulnerabilities, user test, test, test take, server security, security, security site, security s, prob, php security, metrics, inject, fix computer

About the Employer:
( 283 reviews ) hamlin, United States

Projektin tunnus: #477840

Myönnetty käyttäjälle:


As discussed.

70 $ USD 1 päivässä
(1 arvostelu)