FUDforum: How To » HTML and Javascript -- Dangers

Home » FUDforum » How To » HTML and Javascript -- Dangers

Show: Today's Messages :: Polls :: Message Navigator

Re: HTML and Javascript -- Dangers [message #163919 is a reply to message #163911]

Sat, 11 December 2010 19:27

Ernesto

Messages: 413
Registered: August 2005

Karma:

Senior Member

XSS cross site scripting.

No, moderating the forum would not eliminate the problem, then the moderator would be volnurable when previewing the message.

HTML enabled forums is a huge huge nono unless only site managers, etc, are allowed to post to it.

You must never allow end-users to supply HTML code unless you have a rock solid bullet proof parser that removes bad or dangerous HTML code.

Ginnunga Gaming

Report message to a moderator

[Message index]

		HTML and Javascript -- Dangers By: wittrs on Fri, 10 December 2010 18:16
		Re: HTML and Javascript -- Dangers By: naudefj on Sat, 11 December 2010 04:05
		Re: HTML and Javascript -- Dangers By: Ernesto on Sat, 11 December 2010 19:27

Previous Topic:	Downloading all posts in these forums ?
Next Topic:	Problem attaching files in FUDForum 2.8.1

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

]

Current Time: Wed May 15 18:03:42 GMT 2024

Total time taken to generate the page: 0.04464 seconds