Xss plugin - October CMS

Xss

October CMS Cross Site Scripting Protection

Get help in the plugin support forum.

Added on Oct 20, 2024
Current version: 1.0.1
Platform Compatibility
v3.x use latest
v2.x not tested
v1.x not tested
Created by Tober

Xss

October CMS Cross Site Scripting Protection

Simple October CMS Cross Site Scripting Protection plugin that allows you to protect your endpoints from Xss attacks. The plugin is configured through code and does not clutter the administration area with it's own navigation panel.

October CMS Cross Site Scripting Protection

1. Publish Config

php artisan vendor:publish --tag="xss-protection-config"

2. Check config and configure

<?php

return [
    'middleware' => [
        'allow_file_uploads' => true,
        'allow_blade_echoes' => false,
        'completely_replace_malicious_input' => true,
        'terminate_request_on_malicious_input' => true,
        'dispatch_event_on_malicious_input' => false,
    ],

    'anti_xss' => [
        'evil' => [
            'attributes' => null,
            'tags' => null,
        ],
        'replacement' => null,
    ],

    'excludedPaths' => [
        '/cms',
    ],
];

3. Use middleware globally (Kernel.php) or on specific routes

\Tober\Xss\Http\Middleware\XssMiddleware::class

This plugin has not been reviewed yet.
Please login to rate the plugin or write a review.

1.0.1	First version of Tober.Xss Sep 28, 2024

1.0.1

First version of Tober.Xss

Sep 28, 2024

Xss

Categories

Xss

October CMS Cross Site Scripting Protection

1. Publish Config

2. Check config and configure

3. Use middleware globally (Kernel.php) or on specific routes

Latest from the blog

October CMS Celebrates 10 Years with the v3.7 Release