Does Vue, by default, provide security for or protects against XSS?

• Post published:June 25, 2022
• Post category:ReactJS
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. I am trying to figure out how to protect, Angular Vue React against XSS attacks. When…

Continue ReadingDoes Vue, by default, provide security for or protects against XSS?

Sanitize HTML before storing in the DB or before rendering? (AntiXSS library in ASP.NET)

• Post published:June 24, 2022
• Post category:ASP.NET
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. I have an editor that lets users add HTML that is stored in the database and…

Continue ReadingSanitize HTML before storing in the DB or before rendering? (AntiXSS library in ASP.NET)

Is PagesSection.ValidateRequest enough to prevent XSS in asp.Net

• Post published:June 24, 2022
• Post category:ASP.NET
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. In asp.net is the PagesSection.ValidateRequest method enough to prevent all XSS attacks or is there something…

Continue ReadingIs PagesSection.ValidateRequest enough to prevent XSS in asp.Net

How do you set up use HttpOnly cookies in PHP

• Post published:June 23, 2022
• Post category:PHP
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. How can I set the cookies in my PHP apps as HttpOnly cookies? How to solve…

Continue ReadingHow do you set up use HttpOnly cookies in PHP

Protection against XSS exploits?

• Post published:June 23, 2022
• Post category:PHP
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. I'm newish to PHP but I hear XSS exploits are bad. I know what they are,…

Continue ReadingProtection against XSS exploits?

CodeIgniter – why use xss_clean

• Post published:June 23, 2022
• Post category:PHP
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. if I'm sanitizing my DB inserts, and also escaping the HTML I write with htmlentities($text, ENT_COMPAT,…

Continue ReadingCodeIgniter – why use xss_clean

XSS filtering function in PHP

• Post published:June 23, 2022
• Post category:PHP
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. Does anyone know of a good function out there for filtering generic input from forms? Zend_Filter_input…

Continue ReadingXSS filtering function in PHP

What characters or character combinations are invalid when ValidateRequest is set to true?

• Post published:June 16, 2022
• Post category:ASP.NET
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. I've tried looking at the Microsoft site and Googling this but nobody seems to have an…

Continue ReadingWhat characters or character combinations are invalid when ValidateRequest is set to true?

How exactly do you configure httpOnlyCookies in ASP.NET?

• Post published:June 16, 2022
• Post category:ASP.NET
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. Inspired by this CodingHorror article, "Protecting Your Cookies: HttpOnly" How do you set this property? Somewhere…

Continue ReadingHow exactly do you configure httpOnlyCookies in ASP.NET?

How to sanitize input from MCE in ASP.NET?

• Post published:June 16, 2022
• Post category:ASP.NET
• Post comments:0 Comments

All we need is an easy explanation of the problem, so here it is. Is there a utility/function in C# to sanitize the source code of tinyMCE rich text. I…

Continue ReadingHow to sanitize input from MCE in ASP.NET?