Posts Tagged ‘Cross site scripting’

Jun
18
2009

Cross site scripting Attack – XSS

Cross-Site Scripting (XSS) is the method of code injection whereby a malicious user injects code (html, javascript) which would get executed from the site on the users browser. When Google finds this, it will show up a warning message in its search results if the users had searched for a specific term for which your site is indexed. This can harm your user base.

XSS attacks are classified as
- Persistent attacks
- Non-persistent attacks
(more…)

  • Share/Save/Bookmark

Tags: , , , , ,
Posted in PHP, Security | No Comments »

May
17
2009

PHP XSS: htmlspecialchars vs. htmlentities

Cross site scripting XSS is a term used to refer attacks or loop holes present in the scripting used by websites favoring hackers to exploit this path towards identity theft or phishing.

In PHP, two functions are mainly used to circumvent XSS attacks.
i) htmlspecialchars
ii) htmlentities
(more…)

  • Share/Save/Bookmark

Tags: , , , , ,
Posted in PHP, Security | 1 Comment »

  •  

    March 2010
    M T W T F S S
    « Feb    
    1234567
    891011121314
    15161718192021
    22232425262728
    293031  

  • Categories

  • Archives

  • StatPress

    Visits today: 15459
    • w3c

    Recent Posts

    Tags