Hosting Provided By

Re: Preventing cross site scripting

From: Tim Greer <chatmaster(at)charter.net>
Date: Thu Jun 19 2003 - 22:49:53 EDT

Original Message ----- From: "David Cameron" <dcameron@itis-now.com> To: "Bob Lee" <crazybob@crazybob.org>; <webappsec@securityfocus.com> Sent: Thursday, June 19, 2003 7:30 PM Subject: RE: Preventing cross site scripting

You might also want to think about some things that are not likely to provide xss, but would cause visual problems. Eg <img src="" width="10000000" height="20000000"> or excessively large/small fonts.

And tables, and fonts, and.. and... :-)

--

Regards,
Tim Greer chatmaster@charter.net
Server administration, security, programming, consulting. Received on Thu Jun 19 23:23:07 2003

This message: [ Message body ]
Next message: Jeremiah Grossman: "RE: Preventing cross site scripting"
Previous message: Tim Greer: "Re: Preventing cross site scripting"
In reply to: David Cameron: "RE: Preventing cross site scripting"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:52 EDT