logstation
logstation copied to clipboard
Security vulnerability - Cross-Site Scripting
I used "logstation" to log HTTP requests, I noticed the "logstation" interprets HTML. For example, if I send http://xxx.xxx.xxx/xxx.php?a=<dETAILS%0aopen%0aonToGgle%0a=%0aa=prompt,a() x>
And I log the requests and display it in "logstation" the HTML will be interpreted