SharePoint 2010 Safeguard Against XSS
XSS, better known as cross site scripting, is a term given to script injection techniques used by attackers to inject malicious scripts into web pages. The common way to attack is to inject JavaScript into the data entry columns and form fields, to achieve effects such as bypassing user authentication; retrieving, modifying, or deleting important user data; redirecting users to malicious websites; and so on. Without proper safeguards, XSS attacks can be fatal in the case of SharePoint 2010, due to a comprehensive client-side object model introduced in SharePoint 2010.
To equip yourself to better deal with XSS attacks, you must understand the new safeguards provided by SharePoint 2010 against XSS attacks. ...
Get Sams Teach Yourself SharePoint® 2010 Development in 24 Hours now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
