Hi Members,
Any idea about crossdomain.xml file. This file is not in my root domain folder. But, its accessible from browser like.
example.com/crossdomain.xml
I got email an saying the site is vulnerable due to the given file and needs to be fixed.
Content of the xml when accessed from browser
<?xml version="1.0"?>
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" />
</cross-domain-policy>
Is this a real vulnerability? Does your site has any content when accessed from browser.
Thank you.