How to find and fix XSS vulnerabilities?

Last Post

RSS

James K

(@james-k)

Active Member

Joined: 6 years ago

Posts: 7

Topic starter April 17, 2019 1:46 pm

Hi everyone, Please help me to find and fix XSS vulnerabilities

Quote

Topic Tags

peter bance

(@peterbance)

Active Member

Joined: 7 years ago

Posts: 14

April 25, 2019 2:59 pm

Cross-Site Scripting (also known as XSS) is one of the most common application-layer web attacks. XSS vulnerabilities target scripts embedded in a page that is executed on the client-side (in the user’s web browser) rather than on the server-side. XSS in itself is a threat that is brought about by the internet security weaknesses of client-side scripting languages, such as HTML and JavaScript.

Identifying Cross-Site Scripting Vulnerabilities:

Input coming into web applications is not validated
Output to the browser is not HTML encoded

Fixing cross-site scripting errors in applications involves three steps:

Applications must validate data input to the web application from user browsers.
All output from the web application to user browsers must be encoded.
Users must have the option to disable client-side scripts.

ReplyQuote

Forum Statistics

11 Forums

25.5 K Topics

68.4 K Posts

0 Online

144 K Members

Latest Post: How to hack WiFi passwords on android? Our newest member: BryanJes Recent Posts Unread Posts Tags

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed