I'm using MRBS 1.7.3 (and php 7.1 on a Windows Server 2016 machine), and my web team is saying they won't allow * tcp 80 in until I fix my cross-site scripting critical issue (which happens for search.php, day.php, week.php, month.php, report.php, view_entry.php, edit_entry.php, help.php, and admin.php); they use Fortify Software Security Center by Micro Focus; hoping one of their request/responses can help you (help me! please; sorry/thank you).
I'm using MRBS 1.7.3 (and php 7.1 on a Windows Server 2016 machine), and my web team is saying they won't allow * tcp 80 in until I fix my cross-site scripting critical issue (which happens for search.php, day.php, week.php, month.php, report.php, view_entry.php, edit_entry.php, help.php, and admin.php); they use Fortify Software Security Center by Micro Focus; hoping one of their request/responses can help you (help me! please; sorry/thank you).
Request:
Response:
Reported by: hunter3740
Original Ticket: mrbs/bugs/448