stargeek
PHP news website logo.
home    PHP scripts    articles    seo tools    links    search    contact    shop    realtors


DevShed: A Quick Look at Cross Site Scripting







DevShed: A Quick Look at Cross Site
Scripting

DevShed: A Quick Look at Cross Site
Scripting 01/04/2005 11:24 AM

Something that's becoming more and more of an issue with the web today is a scary little thing called "cross-site scripting". It is an, unfortunately, all too simple way for someone to figure out how to bypass certain restrictions on your site. Fortunately, DevShed has a new article that covers this topic and provides some helpful hints on how to protect you and your data.




This is a GrokNews Entry: (what is grok?)





Similar Items

DevShed: A Quick Look at Cross Site Scripting

Grok Headline matches for DevShed: A Quick Look at Cross Site Scripting

Trusted Site Cross Site Scripting
Elevation of Privilege in Musicmatch


Trusted Site Cross Site Scripting
Elevation of Privilege in Musicmatch 04/14/2005 10:14 PM
Posted by Hyperdose Security, Apr 14 2005

Cross Site Scripting in VP-ASP


Cross Site Scripting in VP-ASP 12/05/2003 01:53 PM
Xnuxer Research Laboratory (Dec 05 2003)

The Cross Site Scripting FAQ


The Cross Site Scripting FAQ 06/06/2002 06:01 AM
Websites today are more complex than ever, containing a lot of dynamic content making the experience for the user more enjoyable. Dynamic content is achieved through the use of web applications which can deliver different output to a user depending on their settings and needs.

Dynamic websites have a threat that static websites don't, called "Cross Site Scripting" (or XSS dubbed by other security professionals). Currently small informational tidbits about Cross Site Scripting holes exist but none really explain them to an average person or administrator. This FAQ was written to provide a better understanding of this emerging threat, and to give guidance on detection and prevention.

"tri" Link thx to http://phpdeveloper.org/

"zeldman.b3"

mcNews Cross-Site Scripting


mcNews Cross-Site Scripting 05/29/2002 02:26 PM

Re: Mailman: cross-site scripting bug


Re: Mailman: cross-site scripting bug 01/01/2004 04:31 AM
Axel Beckert - ecos gmbh (Jan 27 2003)

Re: Cross-Site Scripting (XSS) in
Php-Nuke 7.1.0


Re: Cross-Site Scripting (XSS) in
Php-Nuke 7.1.0 08/20/2004 06:34 AM
Anthony Petito (Aug 18 2004)

PHP Classifieds Cross-site Scripting


PHP Classifieds Cross-site Scripting 06/19/2002 08:56 AM

Cross-Site Scripting (XSS) in Php-Nuke
7.1.0


Cross-Site Scripting (XSS) in Php-Nuke
7.1.0 08/17/2004 07:27 PM
Abu Lafy (Aug 17 2004)

Cross-Site Scripting CuteNews


Cross-Site Scripting CuteNews 06/28/2004 01:06 PM
DarkBicho (Jun 27 2004)

php(Reactor) Cross-Site Scripting


php(Reactor) Cross-Site Scripting 06/10/2002 10:25 AM

WoltLab BB Cross-Site Scripting


WoltLab BB Cross-Site Scripting 05/24/2002 11:27 AM

[bWM#017] Cross-Site-Scripting @ PHPKIT


[bWM#017] Cross-Site-Scripting @ PHPKIT 11/06/2003 01:30 PM
ben moeckel (Nov 05 2003)

PostCalendar Cross-Site Scripting


PostCalendar Cross-Site Scripting 05/24/2002 11:27 AM

phpMyDirectory 10.1.3-rel Cross site
scripting


phpMyDirectory 10.1.3-rel Cross site
scripting 03/25/2005 03:01 PM
mircia mircia (Mar 25 2005)

phpBB Cross-Site Scripting


phpBB Cross-Site Scripting 06/03/2002 12:05 PM

Cross-Site Scripting and PHP Babes


Cross-Site Scripting and PHP Babes 06/05/2002 07:44 AM

php(Reactor) Cross-Site Scripting


php(Reactor) Cross-Site Scripting 06/10/2002 10:25 AM

Cross Site Scripting in Moodle < 1.3


Cross Site Scripting in Moodle < 1.3 04/30/2004 03:07 PM
Bartek Nowotarski (Apr 30 2004)

Liferay Cross Site Scripting Flaw


Liferay Cross Site Scripting Flaw 05/22/2004 07:59 PM
Giri, Sandeep (May 22 2004)

osCommerce SQL Injection && DoS && Cross
Site Scripting


osCommerce SQL Injection && DoS && Cross
Site Scripting 12/22/2003 05:21 PM
JeiAr (Dec 22 2003)

WebCT: Cross Site Scripting
Vulnerability


WebCT: Cross Site Scripting
Vulnerability 05/17/2004 01:39 PM
spiffomatic 64 (May 16 2004)

Gallery v1.3.3 Cross Site Scripting
Vulnerabillity


Gallery v1.3.3 Cross Site Scripting
Vulnerabillity 12/30/2003 02:58 PM
The-Insider (Dec 30 2003)

Cross-Site Scripting (XSS) in Nihuo Web
Log Analyzer


Cross-Site Scripting (XSS) in Nihuo Web
Log Analyzer 08/20/2004 11:38 PM
Audun Larsen (Aug 20 2004)

Re: Cross-site scripting vulnerability
in SARA v<=4.2.7


Re: Cross-site scripting vulnerability
in SARA v<=4.2.7 12/18/2003 03:29 PM
toddr_at_arc.com (Dec 17 2003)

Re: Gallery v1.3.3 Cross Site Scripting
Vulnerabillity


Re: Gallery v1.3.3 Cross Site Scripting
Vulnerabillity 12/30/2003 07:37 PM
Bharat Mediratta (Dec 30 2003)

Kayako eSupport Cross Site Scripting


Kayako eSupport Cross Site Scripting 03/22/2005 05:13 PM
GulfTech Security Research (Mar 22 2005)

Cross Site Scripting Vulnerability in
Sympa


Cross Site Scripting Vulnerability in
Sympa 08/21/2004 06:57 PM
Jose Antonio (Aug 20 2004)

phpMyAdmin Cross-site Scripting
Vulnerability


phpMyAdmin Cross-site Scripting
Vulnerability 04/05/2005 01:35 AM
Oriol Torrent Santiago

WebcamXP v1.06.945 Cross Site Scripting
Vulnerabillity


WebcamXP v1.06.945 Cross Site Scripting
Vulnerabillity 01/22/2004 02:58 AM
Rafel Ivgi, The-Insider (Jan 20 2004)

Re: Hotmail Cross Site Scripting
Vulnerability


Re: Hotmail Cross Site Scripting
Vulnerability 07/17/2004 01:07 PM
GreyMagic Security (Jul 17 2004)

Zaep AntiSpam Cross Site Scripting


Zaep AntiSpam Cross Site Scripting 04/19/2004 07:07 PM
Aviram Jenik (Apr 19 2004)

Geeklog Web Portal Cross-Site Scripting


Geeklog Web Portal Cross-Site Scripting 06/13/2002 08:59 AM

Hotmail Cross Site Scripting
Vulnerability


Hotmail Cross Site Scripting
Vulnerability 07/17/2004 08:20 AM
Paul (Jul 15 2004)

NOCC Webmail Cross-Site Scripting


NOCC Webmail Cross-Site Scripting 05/24/2002 11:27 AM

Cross-site scripting vulnerability in
SARA v<=4.2.7


Cross-site scripting vulnerability in
SARA v<=4.2.7 12/17/2003 04:56 PM
Thomas M. Payerle (Dec 17 2003)

Simple Yahoo! Mail Cross-Site Scripting
(GM#006-MC)


Simple Yahoo! Mail Cross-Site Scripting
(GM#006-MC) 06/03/2004 12:02 PM
GreyMagic Software (Jun 03 2004)

Cross Site Scripting in VBulletin forum
software


Cross Site Scripting in VBulletin forum
software 02/12/2004 06:15 PM
Jamie Fisher (Feb 12 2004)

BRS WebWeaver Webserver Cross Site
Scripting Vulnerability


BRS WebWeaver Webserver Cross Site
Scripting Vulnerability 01/28/2004 03:36 PM
Oliver Karow (Jan 28 2004)

Multiple Cross Site Scripting
Vulnerabilities in eGroupWare


Multiple Cross Site Scripting
Vulnerabilities in eGroupWare 08/23/2004 12:19 PM
Joxean Koret (Aug 21 2004)
Grok Description matches for DevShed: A Quick Look at Cross Site Scripting
GrokA matches for DevShed: A Quick Look at Cross Site Scripting

DevShed: A Quick Look at Cross Site Scripting

The following phrases have been identified by the grok system as matching this entry:

















Also check out:


Grok

Ipod Porn on the
Rise
Brief Abstract of
Wikipedia's
Mesothelioma Cancer
page
Get first aid
instructions in your
cell phone
IE is crap
JSPWiki gains
podcasting support
FrontPage
magazine.com :: How
the Left Betrayed My
Country - Iraq by
Naseer Flayih Hasan
New Scientist -
Novel calendar
system creates
regular dates
Iraq battling more
than 200,000
insurgents:
intelligence chief
THE ARCADE FIRE
WELCOMES YOU TO THE
INTERNET
Times Online -
Sunday Times
TV to Go: TiVo
Unveils Portable
Service
Mozilla / Mozilla
Firefox Download
Dialog Source
Spoofing
Mozilla / Firefox
Download Dialog
Source Spoofing
Apple announces 2.3
GHz Xserve G5
Apple begins
shipping Xsan file
system
Samsung develops
21-inch OLED
A look in the
suitcase: weedmeat
Stop sending us
money says aid group
(Reuters)
Young S.African Men
Kill Circumcision
Nurse (Reuters)
Death Sentence for
Iranian Who Beheaded
Sons (Reuters)
Indian Schoolgirl
Survives on Berries
After Tsunami
(Reuters)
Hotelier Left with
Jumbo Tsunami Task
(Reuters)
Jimmy Carter Urged
to Give Fish a
Chance (Reuters)
Chinese Couples
Chicken Out of
Rooster Year
Weddings (Reuters)
Sing Sing Prison
Could Become NY
Tourist Draw
(Reuters)
Cleric Suspect
Misses Hearing Due
to Long Toe Nails
(Reuters)
Apple ships Xsan
64-bit cluster file
system
Stelios eyes Europe
for easyMobile
service
Nortel given more
time to file updated
fiscals
Napster trades on
Nasdaq
Blog reading up 58%
in U.S
NailGun 0.7
bogom 1.2
iZest VisMon 1.6.10
JoSQL 0.5
dvd::rip 0.52.0
(Stable)
médiArchiver
0.2
OBM 0.8.9
xine xine-lib 1.0
Neogia 0.64
(Generator)
Kronolith 2.0.1
(FRAMEWORK_3)
TimeTrax
Direct-to-iPod XM
Satellite Radio
Recording
Fontastic THD-9080:
DVD + NES
Motorola and Burton
to Produce Bluetooth
Jackets
Eye Dazzling Laser
Apple Upgrades
Xserve, Drops Cinema
Display Price
CSDepot CRM
TRACS
Web Recorder
The Bookies
Confessions of an
iPod owner
How to Outperform in
2005
Let's Play
"Worst-Case
Scenario"!
Separating Brokers
From Advisors
Sirius and XM Boost
Volume
what is grok?

Promotions

salvia
Buy absinthe online
guitars for sale
salvia divinorum
Absinthe
Inexpensive Snowboards
oops
buy Salvia Extract
purchase czech absinthe
cheap electric guitars
Buy Salvia divinorum
Cohiba Cigars
Montecristo Cigars
discount airsoft guns
Cuban Cigars online
North End
North End Restaurants
cheap flowers online
inexpensive Wedding Favors
buy steaks online
realtor in Massachusetts
Las Vegas Realtors
Boston Martial Arts
Rubber Stamped