Questions tagged as 'xss'

1
answer

XSS - Prevention works on IE but does not work in Chrome

By preventing an XSS attack (alert (123;)) using the Html.Encode the code on screen is as follows: <select class="combobox" id="xssSelect" name="cmbXss"> <option selected="selected" value="1">&lt;script&gt;alert(123;)&...
asked by 08.06.2015 / 23:14
1
answer

Can I only write code with bugs or vulnerabilities in C?

Who is programmer and experienced knows an implicit truth: C is practically the language of the gods. C corresponds to at least 98% of the software running on all computers and thanks to its low level allows for incredible things. However, th...
asked by 28.06.2014 / 03:01
1
answer

outputStream writing a byteArray - XSS validation

I'm working with software that passes through a "Security Application" that indicates lines of code that are potentially unsafe (theoretically). Based on the code below, the application signals the outputStream.write() line accusing of...
asked by 24.04.2014 / 19:36
1
answer

PHP Security Stored XSS and SQL Injection

Is there any security breach or possibility of attacks in the code tranny below? public static function prepareQuery($query, $params){ $preparedQuery = self::getConn()->prepare($query); foreach ($params as $key => $value...
asked by 13.04.2017 / 16:53
1
answer

How to avoid an XSS vulnerability in an HTML FORM? [closed]

How to avoid having XSS vulnerabilities in a form, using the <form> </form> tag in HTML? Is there any good practice in building HTML code to avoid it?     
asked by 16.12.2014 / 16:10
0
answers

Attempting to access browserconfig.xml can be some kind of attack?

Here in the company where I work, we put in a certain system, made in Laravel 4, a system of sending of emails every time some type of error occurs in requests. We started to distrust some activities, which I will list below, since some see I...
asked by 03.07.2015 / 14:32
0
answers

Correct XSS error pointed to by Site Shielded - Classic ASP

I manage a site that has the seal of the armored site, recently I received an email from the armored site saying that its core had changed and the new scans could identify new errors. As expected, new bugs were identified that were properly f...
asked by 09.09.2015 / 03:31