WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Livejournal opens unoffical XSS security challenge

From: Chris Varenhorst <varenc () MIT EDU>
Date: Tue, 31 Jan 2006 12:35:27 -0500 (EST)
Livejournal opens unoffical XSS security challenge
See it at http://community.livejournal.com/lj_dev/708313.html

Livejournal has always had a tough time preventing malicious cross site
scripting because they allow most html formating and CSS.
I wonder how this will turn out...


-Chris





-------------------------------------------------------------------------
This List Sponsored by: Watchfire
Watchfire's AppScan is the industry's first and leading web application security testing suite, and the only solution to provide comprehensive remediation tasks at every level of the application. See for yourself. Download AppScan 6.0 today. 

https://www.watchfire.com/securearea/appscansix.aspx?id=701300000003Ssh
--------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: