Multiple Cross-Site Scripting Vulnerability
This request is rather different from my previous request and wondered if anyone has any suggestions.
EV 10.0.3 installed on two trusted domains (one production and one in test) environments. Our security team has run some tools to identify Scripting in our environments and they come up with this Vulnerability issue and they have asked me to resolve it and I have no idea where to go and what to change.
The web server and application found on this host (EV server) is vulnerable to multiple XSS attacks due to improper user input sanitization.
The Quate CMS running on port 7215 on EV server is prone to this common vulnerability.
and the recommendation is:
check with the vendor for patch. for workaround configure the web server to return a customised error or redirection page that properly sanitizes requested URL in the response.