I have seen a URL to test for XSS that has the following syntax
If I add # to Request Filtering, denied URL sequence or the rules tab it is still allowed, but I was expecting 404.
Is it possible to handle # ?
↧
Channel:
Security
X
Are you the publisher?
Claim or
contact us
about this channel.
X
0
Channel Details:
- Title: Security
- Channel Number: 10675106
- Language: English
- Registered On: April 1, 2013, 11:32 am
- Number of Articles: 1881
- Latest Snapshot: June 4, 2021, 4:45 am
- RSS URL: http://forums.iis.net/f/rss/1043
- Publisher: https://forums.iis.net/1043.aspx/1?Security
- Description: Discussion about IIS security including componentization, hidden directories, or...
- Catalog: //security1684.rssing.com/catalog.php?indx=10675106
© 2025 //www.rssing.com