CodeCharge Studio
search Register Login  

Web Reports

Visually create Web Reports in PHP, ASP, .NET, Java, Perl and ColdFusion.
CodeCharge.com

YesSoftware Forums -> CodeCharge Studio -> General/Other

 be aware of Cross Site Scripting Vulnerabilities

 Print topic Send topic

Author Message
yakli

Posts: 3
Posted: 04/29/2009, 5:27 PM
I don't know is this a bug or not.

But I have to say that, websites developed with CCS have to be tested for this kind of vulnerabilities. Especially, if you are giving an online services for your customers your website have to be secured by you.

For example; your customers can have an e-mail which contains a link like that and all of your cookie and session infos could be seen by an unwanted and unauthorized persons who can run off-site javascipts.


http://forums.yessoftware.com/index.php?"><script>alert('ss')</script>
_________________
&#304;lkay Ayas
Metunet Computer Ltd. Co.
MCSE,CCNA,Webmaster
www.metunet.com.tr
ilkay@metunet.com.tr
View profile  Send private message

Add new topic Subscribe to topic   


These are Community Forums for users to exchange information.
If you would like to obtain technical product help please visit http://support.yessoftware.com.

Internet Database

Visually create Web enabled database applications in minutes.
CodeCharge.com

Home   |    Search   |    Members   |    Register   |    Login


Powered by UltraApps Forum created with CodeCharge Studio
Copyright © 2003-2004 by UltraApps.com  and YesSoftware, Inc.