Closed. This question is seeking recommendations for books, tools, software libraries, and more. It does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
I am looking for damn good open source XSS prevention script to implement in my php mvc framework.
Any ideas?
Its not quite what you are asking for, but check out: http://code.google.com/p/owasp-esapi-php/
You might check out the AntiSamy project, managed by the Open Web Application Security Project (OWASP).
It s named AntiSamy after Samy Kamkar, creator of the MySpace worm.
http://www.owasp.org/index.php/Category:OWASP_AntiSamy_Project
Although this is not for PHP it could at least give you some ideas for writing your own code. I suppose PHP has the same built in functions to validate/parse URL, encode HTML, etc ... See if that helps you at all ....
I m getting a vulnerability alert from Mcafee Secure saying that there is an XSS vulnerability on my site. The string they use to produce it is: https://www.mywebsite.com/%3E%22%3E%3Cscript%3Ealert%...
I am looking for damn good open source XSS prevention script to implement in my php mvc framework. Any ideas?
I need to know if there is any way of writing additional code to JavaScript files already deployed on the server. I am facing a problem with an ASP.NET 2.0 website and it is related to the ...
I m currently in the process of writing my first Rails app. I m writing a simple blog app that will allow users to comment on posts. I m pretty new to Rails, so I m looking for a bit of guidance on ...
Note: I m using Zend Framework, but I think most of this applies to PHP coding in general. I m trying to choose a strategy for writing views scripts, possibly with the help of a templating engine. ...
I m building a webpart for a Sharepoint site that allows the user to enter information into a textbox that will eventually be showed to other users. The problem is that I need to allow simple ...
Anyone know if jsbin.com implements any protection for XSS or other javascript attacks? I see jsbin links used fairly regularly on sites like this one and I can t find any indication from the site ...
We got a long-running website where XSS lurks. The problem comes from that some developers directly - without using HtmlEncode/Decode() - retrieve Request["sth"] to do the process, putting on the web. ...
