Skip to content

Access Control: Nginx Virtual Host Traffic Status Module - Cross-Site Scripting

Identifier: nginx_module_vts_xss

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

Nginx Virtual Host Traffic Status Module contains a cross-site scripting vulnerability. An attacker can execute arbitrary script and thus steal cookie-based authentication credentials and launch other attacks.

Reference:

Configuration

Example

Example configuration:

---
security_tests:
  nginx_module_vts_xss:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.