Friday, January 2nd, 2009
I've been working on a Java app which needed Rhino for scripting. The app would need to run untrusted JavaScript code from 3rd parties, so I had to find a way to block access to all Java methods, except the ones I wanted. This would not be a problem if ...
Posted in Programming | No Comments »
Tuesday, September 25th, 2007
Originally posted in my old blog at My Opera
Cross-site scripting attacks, also known as XSS attacks, are a type of vulnerability found in some web sites.
For example, if your blog comment box allows users to write JavaScript snippets that aren't escaped in any way by the server and are ran, ...
Posted in Programming, Web | 2 Comments »
Subscribe to the RSS feed