We launched new forums in March 2019—join us there. In a hurry for help with your website? Get Help Now!
    • 42946
    • 1 Posts
    Recently a bunch of our client's sites fell victim of an XSS attack through an older version of modx evolution and eform. We've since cleaned up the install, updated to the latest release of evolution and the eform version appears to match the latest distrobution. Unfortunately now the client is a little paranoid and has been running the sites through the HP WebSecurity Suite and our eforms are coming up with various XSS vulnerabilities. I've ran the site through a few tools like XSS ME and can't get it to recreate it the problems they are showing.

    If anybody has had similar issues and can point me in the right direction it would be greatly appreciated.