Skip to Main Content
Hack Proofing Your Web Applications
book

Hack Proofing Your Web Applications

by Syngress
June 2001
Intermediate to advanced content levelIntermediate to advanced
512 pages
18h 49m
English
Syngress
Content preview from Hack Proofing Your Web Applications
96 Chapter 3 • Understanding the Risks Associated with Mobile Code
image.They inserted the following line into HTML code to invoke a
JavaScript pop-up window:
<IMG LOWSRC="javascript:alert('JavaScript message.')">
This caused Hotmail to go back to the drawing board and redesign
their JavaScript filter. Now when you view source code of the message,
you will find it has been converted to:
<IMG lowsrc="javascript:Filtered()">
Exploiting Plug-In Commands
Netscape uses plug-ins for adding advanced functionality, as mentioned
previously. JavaScript has the ability to communicate with a plug-in and
call methods. If a plug-in existed that allowed files to be read ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Developer's Guide to Web Application Security

Developer's Guide to Web Application Security

Michael Cross
The CERT® Oracle® Secure Coding Standard for Java™

The CERT® Oracle® Secure Coding Standard for Java™

Fred Long, Dhruv Mohindra, Robert C. Seacord, Dean F. Sutherland, David Svoboda
Troubleshooting CentOS

Troubleshooting CentOS

Jonathan Hobson

Publisher Resources

ISBN: 9781928994312