Deutsche Version (DE_DE)
English version (EN_US)
Test Methods ( Detailed Overview )
Here is a list of every test performed by Web Scan Service.
HTTP TRACE Method Cross-Site ScriptingRemediation Task
Disable unnecessary componentsWASC ClassificationClient-side Attacks: Cross-site ScriptingAffected ProductsThis issue may affect different types of productsTechnical DescriptionHTTP TRACE is enabled on the web server. HTTP TRACE request method allows that the data received by the server is sent back to the client. The TRACE method could be used from a malicious user to start a Cross-Site scripting attack.Fix RecommendationThis problem has to be solved in the configuration of the web server: Deactivate Trace Method.
Technical DescriptionHTTP TRACE is enabled on the web server. HTTP TRACE request method allows that the data received by the server is sent back to the client. The TRACE method could be used from a malicious user to start a Cross-Site scripting attack.Fix RecommendationThis problem has to be solved in the configuration of the web server: Deactivate Trace Method.
This problem has to be solved in the configuration of the web server: Deactivate Trace Method.
