XSS-Vectors.txt detected as a Malware...

Question

Hi,I've download the SoapUI's sources from your website, and my antivirus (Sophos) detected that the XSS-vectors.txt is infected by Mal/Badsrc-d, I know this is a secturity for the CrossSiteScripting, so, can I really trust this file ?Thanks a lot,Best Regards,- Romain.

grussell · Answer

I've had the same problem, does anyone know which jar is this in so I can remove/edit it to get it past the virus scanner?

grussell · Answer

Looks like it's in soapui-4.0.0\com\eviware\soapui\resources\security\

smartbear_suppo · Answer

As Romain wrote, this file mimics the behavior of Cross Site Scripting attacks and is used only by soapUI's new Security Test feature. It's harmless since it only tests if such an attack would be possible -- it doesn't actually perform anything harmful, manipulate stuff, etc.

If you don't take my word for it, read the source code yourself -- afterall it's open source

I wouldn't recommend removing that file since it's required to perform Cross Site Scripting security tests.

Henrik
SmartBear Software

Forum Discussion

XSS-Vectors.txt detected as a Malware...

3 Replies

Recent Discussions

No Fluff, Just Real Stuff - DevRel Newsletter

failed to default sun.jnu.encoding=utf-8

Bad Gateway (502)

Related Content

Object detection error

error osx soap ui malware

Object detecting