and more in a single search tool across platforms. Read the announcement here. |
10/13/2022 05:56 AM
Team, We have observed an error 'Access denied due to XSS' while submitting Add access request for an entitlement in an endpoint. It is an issue with just the one entitlement for the endpoint and not seen with any others. Can someone advise what causes this error to occur? the issue is that the request goes for approval with this error but the approver does not get an option to approve the request. Did not find anything relevant to the error in logs
Solved! Go to Solution.
10/13/2022 06:13 AM
Please share entitlement name
10/13/2022 06:23 AM
'splunk_dev_intelligence' is the entitlement under 'Corporate AD' endpoint
10/13/2022 06:38 AM
Does entitlement description contains " (double quote) if yes it will throw Access denied due to XSS error
10/13/2022 06:52 AM
Thank you for the response. But the entitlement description does not contain any double quotes. It has the following special characters though - It contains * ; - , > .
Does any of these cause this error too?
10/13/2022 06:54 AM - edited 10/13/2022 06:55 AM
Remove the angular brackets and then try.
Here's some info for your read : https://owasp.org/www-community/attacks/xss/
10/13/2022 07:14 AM
Thanks Avinash, That fixed it and Good to know