TRIAL REQUEST A DEMO LOGIN

HTML Sanitizer property should be enabled

Impact area

Security

Severity

High

Affected element

System property

Rule ID

SN-0189

Impact

Remove unwanted code and protect against security concerns such as cross-site scripting attacks by sanitizing HTML markup in HTML fields and translated HTML fields.

Remediation

Set the system property "glide.html.sanitize_all_felds" to true.

Time to fix

15 min

References

This rule is linked to Common Weakness Enumeration CWE-150 Improper Neutralization of Escape.

What's here


Related content

ServiceNow rules

System property rules

Common Weakness Enumeration (CWE™)

ServiceNow: HTML sanitizer





Last modified on Oct 13, 2020
Copyright © QualityClouds 2021