book

Building RESTful Web Services with .NET Core

by Gaurav Aroraa, Tadit Dash

May 2018

Intermediate to advanced

334 pages

7h 25m

English

Packt Publishing

Read now

Unlock full access

Content preview from Building RESTful Web Services with .NET Core

Cross-site scripting attacks

Cross-site scripting attacks—or XSS attacks—typically happen as a result of bad input, where an attacker injects client scripts (JavaScript in most cases) into the web page. According to the official web page (https://docs.microsoft.com/en-us/aspnet/core/security/cross-site-scripting):

"Cross-Site Scripting (XSS) is a security vulnerability which enables an attacker to place client-side scripts (usually JavaScript) into web pages."

Here, I am using the example of a web client that consumes web services. You will learn more about web clients in Chapter 10, Building a Web Client (Consuming Web Services).

The following screenshot shows a scenario where the Create screen is under attack:

The preceding screenshot ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Hands-On RESTful Web Services with ASP.NET Core 3

Samuele Resca

Microservices in .NET Core

Christian Horsdal Gammelgaard

Building Microservices with .NET Core 2.0 - Second Edition

Gaurav Aroraa

Building RESTful Web services with Go

Naren Yellavula

Publisher Resources

ISBN: 9781788291576Supplemental Content