Writing JS into the PG description is rejected

Highlighted
Anonymous
Not applicable

Writing JS into the PG description is rejected

Hi all

When I write to JS tag sample into my program description,

Screen Shot 2016-11-24 at 12.40.31.png

this error message is shown. I have admin privileges.

Screen Shot 2016-11-24 at 12.40.47.png

On the other hand, I can write HTML sample into it.

Screen Shot 2016-11-24 at 12.41.47.png

JS injection?

Tags (1)
3 REPLIES 3
Highlighted
Level 10 - Community Moderator

Re: Writing JS into the PG description is rejected

Probably XSS protection kicking in. The error is from the server after scanning the input. The textbox doesn't render HTML anyway, so not sure what you're trying to get out of it....

Anonymous
Not applicable

Re: Writing JS into the PG description is rejected

Hi Sanford Whiteman

I found a workaround to XSS protection.

Change '<' to other char.

Screen Shot 2016-11-24 at 14.44.28.png

Highlighted
Level 10 - Community Moderator

Re: Writing JS into the PG description is rejected

Makes sense.