3 Replies Latest reply on Jan 31, 2020 5:08 AM by Sanjeev-OFM

    validation on comments

    Sanjeev-OFM

      Hello Experts,

       

      Good morning, I'm using the web center content version 12.2.1.3.0 and recently our security team has raised a vulnerability in wcc as they are able to enter any html code in comments field as well in other meta-data fields so they are saying it may be a sql injection and html injection and to avoid it need to put validation on each field so that user can not insert special character.

      Please suggest on below points

      1- can we achieve it using rule for all fields using custom user friendly message(msg: special character not allowed)?

      2- if we'll put validation on all fields whether it will impact on check-in service performance?

       

       

      Thanks