Exforsys

Online Training

Preventing Cross Site Script Attacks

This is a discussion on Preventing Cross Site Script Attacks within the Web 2.0 forums, part of the Programming Talk category; Preventing Cross Site Script Attacks Cross Site Script or XSS is one of the popular methods for attacking not only ...


Go Back   Exforsys > Programming Talk > Web 2.0

Preventing Cross Site Script Attacks Preventing Cross Site Script Attacks

Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools
  #1 (permalink)  
Old 02-12-2008, 05:31 AM
Senior Member
  
Join Date: Apr 2005
Posts: 716
lokeshm is on a distinguished road
Preventing Cross Site Script Attacks
Preventing Cross Site Script Attacks

Cross Site Script or XSS is one of the popular methods for attacking not only to Ajax based websites but almost any other website that accepts user inputs. Even before Ajax was conceptualized, this attack was already practiced by different hackers. There was one hack that was used in 2005 wherein MySpace.com was targeted. It uses a simple JavaScript function that could be embedded in user’s website and others. Once they view the webpage, the “My Hero” link is changed to the name of the hacker. It is practically a pyramid hack since anyone who sees the profile became the host of the hack. The code was actually posted by the builder of the hack in possible reparation for what he did. It is just a simple JavaScript that could be embedded in any website. It just does not hack any information, it practically takes over every function it wants to.

Here are some practices that will prevent future attacks using XSS.

Read More...
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

« PHP in Ajax Using JPSpan | How to Load Ajax Faster »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads

Thread Thread Starter Forum Replies Last Post
Autoinvoice and CCID/Insert into GL_CODE_COMBINATION problem ?? grlewycky Oracle Apps 0 05-15-2007 03:06 PM
Tutorial on Silk Test spriya279 Testing Tutorials 2 02-15-2007 07:31 PM
comp.archives.msdos.{announce,d} FAQ (Frequently Asked Questions) Timo Salmi Tech FAQ 0 06-04-2004 07:06 AM
comp.archives.msdos.{announce,d} FAQ (Frequently Asked Questions) Timo Salmi Tech FAQ 0 05-04-2004 07:06 AM
[FAQ] FileMaker Pro - database for Macintosh and Windows Martin Trautmann Tech FAQ 0 04-17-2004 08:26 AM


All times are GMT -4. The time now is 07:27 AM.

Contact Us - Exforsys - Archive - Privacy Statement - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.1.0
Copyright 2004 - 2007 Exforsys Inc. All rights reserved.