cross site scripting

Webcasts

MSDN Webcast: Managing Cross-Site Scripting Using CAT.NET and AntiXSS (Level 200)

January 9, 2009 12:00am PST

Cross-site scripting attacks are one of the most common attack vectors that plague Web applications. This webcast provide an overview of the tools designed for discovery and mitigation of...

Provided by: Microsoft

Downloads

Protect your Web site from cross-site scripting attacks

June 6, 2005 12:00am PDT

Cross-site scripting (XSS) attacks, a method by which attackers embed HTML scripts either in Web postings (stored XSS) or input fields on a Web site (reflected XSS), are gaining popularity, most...

Provided by: TechRepublic

Software

Microsoft IIS4 "Cross-Site Scripting" Vulnerability Patch (MS00-060) (Windows)

November 9, 2000 12:00am PST

This patch eliminates security vulnerabilities in the Microsoft Internet Information Server. The vulnerabilities could allow a malicious Web site operator to misuse another Web site as a means of...

Provided by: Microsoft

Downloads

Microsoft IIS4 "Cross-Site Scripting" Vulnerability Patch (MS00-060) (Windows)

November 9, 2000 12:00am PST

This patch eliminates security vulnerabilities in the Microsoft Internet Information Server. The vulnerabilities could allow a malicious Web site operator to misuse another Web site as a means of...

Provided by: Microsoft

White Papers

Detecting Persistent Cross-Site Scripting

September 3, 2009 12:00am PDT

In recent months, the author has seen a shift in the way that hackers ply their trade. Increasingly, instead of attacking applications to get to the databases they access, hackers are using...

Provided by: eEye Digital Security

White Papers

XSSDS: Server-side Detection of Cross-site Scripting Attacks

September 25, 2008 12:00am PDT

Cross-site Scripting (XSS) has emerged as one of the most prevalent type of security vulnerabilities. While the reason for the vulnerability primarily lies on the server-side, the actual...

Provided by: University of Hamburg

Software

Microsoft Windows 2000 Patch: Indexing Service Cross Site Scripting Update (Windows)

November 5, 2000 12:00am PST

This update resolves the "Indexing Services Cross Site Scripting" vulnerability in Indexing Services for Windows 2000 and is discussed in Microsoft Security Bulletin MS00-084. Download now to...

Provided by: Microsoft

Webcasts

Detecting XSS Scripting (Cross-Site Scripting)

January 1, 2011 12:00am PST

This webcast should be viewed following the Script Injection video demonstration. Cross-site scripting ('XSS' or 'CSS') is an attack that takes advantage of a Web site vulnerability in which the...

Provided by: Imperva

White Papers

Consideration Points: Detecting Cross-Site Scripting

August 29, 2009 12:00am PDT

Web Application (WA) expands its usages to provide more and more services and it has become one of the most essential communication channels between service providers and the users. To augment the...

Provided by: Hanyang University

White Papers

Static Detection of Cross-Site Scripting Vulnerabilities

May 18, 2008 12:00am PDT

Web applications support many of the daily activities, but they often have security problems, and their accessibility makes them easy to exploit. In cross-site scripting (XSS), an attacker...

Provided by: Association for Computing Machinery

White Papers

What Is Cross Site Scripting (XSS)?

September 13, 2008 12:00am PDT

High availability is a system design protocol and associated implementation that ensures a certain absolute degree of operational continuity during a given measurement period. Cross site scripting...

Provided by: SecPoint

White Papers

Hunting Cross-Site Scripting Attacks in the Network

May 3, 2010 12:00am PDT

CROSS-Site Scripting (XSS) attacks in web applications are considered a major threat. In a yearly basis, large IT security vendors export statistics that highlight the need for designing and...

Provided by: Foundation for Research and Technology - FORTH

White Papers

A Survey on Cross-Site Scripting Attacks

May 29, 2009 12:00am PDT

Web applications are becoming truly pervasive in all kinds of business models and organizations. Today, most critical systems such as those related to health care, banking, or even emergency...

Provided by: Universitat Oberta de Catalunya

Webcasts

The Perils of Cross-Site Scripting (XSS)

January 1, 2009 12:00am PST

Cross-site Scripting (XSS) attacks are universally seen as the #1 security vulnerability facing web applications. Don't wait another today to learn how protect the organization. The presenter of...

Provided by: Breach Security

White Papers

Automatic Creation of SQL Injection and Cross-Site Scripting Attacks

September 6, 2008 12:00am PDT

The authors present a technique for finding security vulnerabilities in Web applications. SQL Injection (SQLI) and cross-site scripting (XSS) attacks are widespread forms of attack in which the...

Provided by: Stanford University

White Papers

Prevention of Cross-Site Scripting Attacks on Current Web Applications

February 25, 2008 12:00am PST

Security is becoming one of the major concerns for web applications and other Internet based services, which are becoming pervasive in all kinds of business models and organizations. Web...

Provided by: Universitat Oberta de Catalunya

Articles

Use the revised OWASP Top Ten to secure your Web applications -- Part 2

March 5, 2007 4:40pm PST

Cross-site scripting is the most common Web application vulnerability. Scripts exploiting this weakness can cause serious problems for home and business users. In this article, Tom Olzak explores...

Blog Posts

What is cross-site scripting?

March 18, 2008 12:47pm PDT

Cross-site scripting, also known as "XSS", is a class of security exploit that has gotten a fair bit of attention in the last few years. Many users, and even Web developers, aren't entirely clear...

17 Latest comment by stacey7165

Discussion Threads

What is cross-site scripting?

March 19, 2008 3:00pm PDT

What is cross-site scripting? article root Cross-site scripting: Have I covered everything? In the article [url=http://blogs.techrepublic.com.com/security/?p=426]What is cross-site...

17 Started by apotheon  |  Latest comment by stacey7165

Articles

Italian develops first multi-site Web-mail worm

July 13, 2007 11:51am PDT

An Italian security researcher this week has developed the first Web-based e-mail worm capable of taking advantage of cross site scripting (XSS) vulnerabilities in multiple Web-mail services.