Direct links to fixes
APAR status
Closed as fixed if next.
Error description
Expected behaviour: XSS Analyzer should ignore comment tags within JavaScript sections Observed behavior: Unclosed comment tag within JavaScript causes XSS False Positive Workarounds (if applicable): Fix unclosed comment tag
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: * * ASE & ASD * **************************************************************** * PROBLEM DESCRIPTION: * * Unclosed comment tag within JavaScript causes XSS False * * Positive * **************************************************************** * RECOMMENDATION: * ****************************************************************
Problem conclusion
Temporary fix
Comments
APAR Information
APAR number
PI67619
Reported component name
SEC APPSCAN STD
Reported component ID
5724T5900
Reported release
903
Status
CLOSED FIN
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-08-16
Closed date
2016-10-27
Last modified date
2016-10-27
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Applicable component levels
R903 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSS9LM","label":"IBM Security AppScan Source for Automation"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"903","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Document Information
Modified date:
21 December 2021