|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Re: Re: Apache Server HTML Injection and UTF-7 XSS Vulnerability
cxib
securityreason.com
Date: Mon May 12 2008 - 14:31:00 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
It is not apache issue. You recrive 403 status, so charset is set in Header. Charset should not be in meta tags. Issue exist, when apache send response without charset in header AND meta tags. Probably you are using old browser without standard settings.
Best Regards,
Maksymilian Arciemowicz
securityreason.com
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]