javascript - XSS attack from url get variable -

September 15, 2010

I have a site to get data from a database and create a link for the next page

link page Page_id and this URL bar

  The URL will be displayed: 
   example.php Page = 2 & title = foo  
   Page_ID  will be only numbers but the title can be anything. 
  My questions are: < / P> 
  If the user in the  javascript: alert ()  heading? 
  Will it run the script from the URL? 
  Anything should be taken care of?

  
  Do not do the browser Security should not (at least IE 11)  onclick  should not execute JavaScript feature.


















Get link





Facebook





X





Pinterest





Email





Other Apps




Comments





Post a Comment







Popular Posts




sockets - capturing TCP packets flow -



    Problem statement: Suppose a parent is hosted on server machine IP: 1.1.1.1 and something in that server The time is called three different servers A (1.1.1.2), B (1.1.1.3), C (1.1.1.4). They can be server database servers or other servers. Now you can send an http request to 1.1.1.1/somepage.htm from your browser, as a result some TCP packets will go to server 1.1.1.1, and 1.1.1.1 a TCP can send packets and packets, target C as well, without installing any agent software in any server, get all TCP packet information from the browser machine. One solution is that we can write a code on server machine 1.1.1.1 which will filter all TCP packets in relation to the related IP. But I do not want that solution. Is there any way to solve this issue? Is it possible to present a new protocol for this? But server codes can not be modified.      Does any agent software include anything like Verhark? The usual way to see all the datagrams obtained is by using sniffing like a wirhark or you can ...






javascript - How to set the table width to parent div width in
wordpress widget -



    I am writing a plugin for WordPress and use a table layout in the widget wrapper to display rankings and game schedules. I am doing A line with all the information given is used in approximately 1000 pix width for a widget with a width of 260px or 360px, I want to leave less important information to display the most important information in a row. Due to interchangeable themes in WordPress, I do not know how many widgets will be in WordPress.  and examples of my current theme, based on the available width, I want to display more or fewer columns to fill the row. My idea is to first set the width of the table in the inner width of the wrapping divis, that I can do this with something like    $ ('# objects'). Width ($ ('# Object') .Parent (.) Width ()); Second, it is my goal that to display some columns per line, depending on the width of the row   My questions:    Is my planned way of accomplishing this by sending the width of the table as the parameter of the javasc...






firebird2.5 - What is the use of firebird.msg in firebird database -



    I'm thinking of using Firebird with my application. I would like to know that the  firebird.msg  is used for the file. Is it an optional or compulsory file to include in your app installer package?       firebird.msg  contains firebird's actual error messages when an error occurs , Firebird only sends the error code and message parameters. The client library then sees the actual error message text in this file.   Without the presence of this file (for firebird 2.5 and earlier its in a folder for  fbclient.dll  (or similar libraries), Firebird 3 and later the same folder In) errormessage will only report that it can not get the  firebird.msg  and error number.   So you do not really need it, but if you need firebird clients or embedded libraries or want and if you want or want a meaningful error message from the firebird, then you should include it.








Powered by Blogger

Six

Search This Blog

javascript - XSS attack from url get variable -

Comments

Post a Comment