MozillaWiki

Security/Features/XSS Filter: Difference between revisions

Page Discussion

Security/Features/XSS Filter (view source)

Revision as of 00:15, 23 June 2011

40 bytes added ,  23 June 2011
no edit summary
No edit summary
No edit summary
Line 75: Line 75:


*This feature will not stop persistent or injected XSS attacks (only reflected ones).  
*This feature will not stop persistent or injected XSS attacks (only reflected ones).  
*The filter will not be able to deal with complex string transformations employed by web applications. In this case, it will fail to recognize that a script has been provided
*The filter will not be able to deal with complex string transformations employed by web applications. In this case, it will fail to recognize that the script was provided by an input parameter and allow it to run.


== Other Stuff  ==
== Other Stuff  ==
Rpelizzi
18

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/322099"