sql injection / corss-site scripting for FIM 2010 R2 sspr RRS feed

  • Question

  • Have all the SSPR input pages sql injection and corss-site scripting certified?

    Where they tested for these vulnerabilities?  

    Friday, April 19, 2013 4:24 PM

All replies

  • Yes, all web pages in FIM has been tested for this. Before we release, we hire an external firm to do penetration testing on the product and this is included in the testing.

    Saturday, April 20, 2013 4:09 PM