View New Content

Welcome to the PrestaShop Forum! We hope you'll share your comments and suggestions with us. We ask that you please post in English to the main sections of the PrestaShop Forum. If you want to write in another language, please post in the corresponding PrestaShop Community section below.

Please note that PrestaShop Community sections are largely self-moderated. PrestaShop team members may or may not participate in non-English sections. To improve the chances of receiving feedback to your question or comment, please post it in English to the main sections of our Forum.

NYC

Vous parlez français ? par ici !

0

script vulnerable to Cross Site Scripting (XSS) attacks

Started by wiros, Dec 22 2009 07:14 PM

You cannot reply to this topic
Go to first unread post

#1 wiros

PrestaShop Apprentice

14 Nov 2009
Members
33 posts

Posted 22 December 2009 - 07:14 PM

Hi,

It seems I had a hack attack last week. The site was down for two days when I found out that that the permisions of some files and folders had been changed. Also the hosting company told me that some PHP script are unsafe so usPHP refuse to run the sripts
I ran acunetix myself and program gave we 35 scipts that are possibility vulnerable to Cross Site Scripting (XSS) attacks.

Anyone has this experience and can tell me how to secure the scripts?

Thanks, Robert

Back to top

#2

PrestaShop Newbie

15 Dec 2011
Members
0 posts

Posted 04 January 2010 - 10:54 AM

Hi,

What is your version of Prestashop ?

Back to top

#3

PrestaShop Newbie

15 Dec 2011
Members
0 posts

Posted 04 January 2010 - 01:55 PM

Hmm. So are you saying that you think Prestashop is vulnerable, or are you saying that now your site has been hacked there are now 35 scripts that may be vulnerable to XSS?

I'm not sure what you've actually tested here.

Paul