Feb 15 · 2 min read · You can have the cleanest React code, the fastest API, and the most beautiful UI. But if I can inject a script into your search bar that steals your users' session cookies, your startup is dead. Security is not an "add-on." It is a fundamental requi...
Join discussion
Jan 26 · 4 min read · Cross-Site Scripting (XSS) is a security vulnerability that allows an attacker to inject malicious client-side scripts (usually JavaScript) into web pages viewed by other users. Unlike CSRF (which targets the server by tricking it into accepting a re...
Join discussionJan 15 · 4 min read · Cuando desarrollamos aplicaciones en Oracle APEX, solemos concentrarnos en la lógica del negocio, la experiencia de usuario y el rendimiento. Sin embargo, hay un aspecto crítico que muchas veces se pasa por alto hasta que es demasiado tarde: la segur...
Join discussion
Jan 6 · 3 min read · Introduction Cross-Site Scripting (XSS) is a client-side attack that exploits trust between a user’s browser and a web application. Unlike SQL Injection, which targets backend databases, XSS targets users directly by injecting malicious scripts into ...
Join discussionDec 19, 2025 · 3 min read · Alright.This one will be more analytical + reflective, less step-by-step, more “how I thought while doing it”, so it doesn’t feel repetitive. Use-Case-05 — XSS Attack Detection using Splunk Spotting XSS Attempts in Web Logs — What the Logs Actually ...
Join discussionOct 28, 2025 · 6 min read · En nuestra entrada anterior de APEX Insights, cubrimos las diez recomendaciones clave para construir aplicaciones APEX robustas y mantenibles. Ahora, es momento de profundizar en el pilar más crítico de todos: la seguridad. Oracle APEX ofrece una arq...
Join discussion
Sep 22, 2025 · 4 min read · You’ve just shipped a beautiful, responsive frontend. The UI is pixel-perfect, and the user experience is smooth. But have you thought about what’s happening under the hood? As frontend developers, we often think of security as a backend problem. The...
Join discussion
Sep 2, 2025 · 1 min read · In today’s digital age, web applications are the lifeline of businesses. From online stores and banking platforms to content management systems and SaaS tools, dynamic web applications process sensitive user data daily. However, with increased functi...
Join discussion
Jul 21, 2025 · 3 min read · Stored XSS occurs when malicious scripts are permanently stored on a web server (e.g., in a database or comment field) and later executed in users’ browsers when they view the infected content. In page redirection attacks, the injected script automat...
Join discussion
Jul 2, 2025 · 2 min read · Cross-Site Scripting (XSS) attacks can have a wide range of impacts depending on the type and severity of the vulnerability. Here are the main impacts of an XSS attack: 🔴 1. User Data Theft Attackers can steal cookies, session tokens, and local st...
Join discussion