WebApp Sec mailing list archives

Re: Ajax security reference

From: Eoin Keary <eoinkeary () gmail com>
Date: Tue, 13 Sep 2005 08:40:04 +0000

Hi,
Good article. I was looking into this object from the viewpoint of XSS
and web services.
Either scripting functions to send informaiton to a web service or
creating zombies via XSS to call a target web service.


On 12/09/05, Jean-Jacques Halans <halans () gmail com> wrote:

Using the XMLHttpRequest Object and AJAX to Spy On You
http://www.devx.com/webdev/Article/28861

Security in an AJAX World
http://www.whirlycott.com/phil/2005/04/15/security-in-an-ajax-world/

On 9/2/05, Luke Fraser <LFraser () soltrus com> wrote:

and anything specific to XMLHttpRequest security or any other aspect of Ajax
apps that wouldn't apply to a 'normal' web application.


--

Halans Jean-Jacques

Current thread:

Ajax security reference Luke Fraser (Sep 02)
- Re: Ajax security reference Serg Belokamen (Sep 03)
  - Re: Ajax security reference John Manko (Sep 05)
    - Re: Ajax security reference Serg Belokamen (Sep 05)
    - Re: Ajax security reference John Manko (Sep 05)
    - Re: Ajax security reference bugtraq (Sep 06)
- Re: Ajax security reference Jean-Jacques Halans (Sep 12)
  - Re: Ajax security reference Eoin Keary (Sep 13)
- RE: Ajax security reference Balaji (Sep 13)
- <Possible follow-ups>
- RE: Ajax security reference Damhuis Anton (Sep 05)