Indu Jawlacoders.hashnode.dev·Oct 14, 2024Types of Ethical Hacking: Choose yoursWeb Application Hacking: SQL InjectionSQL Injection is one of the most common web application vulnerabilities, where an attacker can manipulate the backend database by injecting malicious SQL queries through user input fields. Consider a scenario whe...#wirelesshacking
Nikita Sarkanianikitasarkania.hashnode.dev·Oct 2, 2024Security Risks of Inline Event Handlers in React.js (And How to Avoid Them)If you’re a React.js developer, chances are you’ve dropped an inline event handler into your code without even thinking twice. It’s so easy to do! You might write something like this: <button onClick={() => alert('You clicked me!')}>Click Me</button>...84 readsReactSecurity
Ashari Muhammad Hisbullohblog.iamashari.me·Oct 2, 2024Frontend Security 101: Saving You from XSS Attack (still)Setelah di postingan sebelumnya kita sudah membahas XSS dan salah satu cara kita menanggulangi serangan XSS yaitu dengan menggunakan Content Security Policy (CSP), pada kesempatan kali ini saya mau melengkapi pembahasan saya terkait XSS dan mungkin h...Frontend Security 101Frontend Development
Le Quoc Cuongnospaceavailable.hashnode.dev·Sep 16, 2024Comment trong HTML, <script> tag và một kỹ thuật CSP bypass để tấn công XSSNgôn ngữ HTML được đặc trưng bởi các HTML tag và các thuộc tính (attributes) của mỗi tag. Trong bài viết này, chúng ta sẽ tìm hiểu về tag <script> trong HTML và một số hành vi mà mình cho là khá thú vị khi mà HTML parser và Javascript parser cùng hoạ...40 readsJavaScript
Harshal Shahdelvingwithharshal.hashnode.dev·Aug 21, 2024Understanding Cross-Site Scripting (XSS) Attacks: What You Need to KnowCross-Site Scripting (XSS) is one of the most common and dangerous security vulnerabilities affecting web applications today. Despite being well-known, XSS continues to be a significant threat, impacting websites and users across the globe. In this b...Fortify and Defend: Navigating the Cybersecurity Landscapewebsecurity
Abhishek Sharmaabhisheksharmacodes.hashnode.dev·Aug 15, 2024Safeguard your App from Cross-Site Scripting (XSS) AttackWhat is Cross-Site Scripting (XSS)? Cross-site scripting (XSS) is a type of injection attack that allows malicious scripts to be injected into trusted websites. When a vulnerable site includes content from an untrusted source without proper validatio...#cybersecurity
Tran Hoang PhongforFIS Securityblog.fiscybersec.com·Aug 4, 2024Hàng triệu trang web có khả năng bị tấn công XSS thông qua lỗ hổng trong việc triển khai OAuthSalt Labs, bộ phận nghiên cứu của công ty bảo mật API Salt Security, đã phát hiện và công bố chi tiết về một cuộc tấn công cross-site scripting (XSS) vào Hotjar thông qua cơ chế đăng nhập dựa trên OAuth, và có khả năng ảnh hưởng đến hàng triệu trang ...41 readsNewslettershotjar
Yash Shirsathyashashirsath.hashnode.dev·Aug 2, 2024Unveiling Cyber Vulnerabilities: Identifying Weaknesses and Implementing Robust SolutionsIn an era where digital transformation is accelerating at an unprecedented pace, the importance of cybersecurity has never been more critical. Cyber vulnerabilities represent weaknesses or flaws in a system that malicious actors can exploit to gain u...20 likesdefault credential
Aayush Srivastavaaayush-srivastava.hashnode.dev·Jul 4, 2024What is Cross - Site Scripting ?Introduction Cross-site scripting (XSS) is a common web security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users. This type of attack occurs on the client side, where the goal is to execute harmful...1 likeXSS
Azam Sajidaazamsajid.hashnode.dev·Jun 20, 2024Secure Dynamic HTML in Oracle APEX: Best Practices and PitfallsIntroduction In web applications, generating dynamic HTML content securely is crucial to prevent security vulnerabilities, especially Cross-Site Scripting (XSS) attacks. Oracle APEX offers various tools and methods to ensure secure HTML generation. O...140 readsorclapex