Fixing Unvalidated Redirects and Forwards in ASP.NET
Note: This post is part of our series on “How to Fix Unvalidated Redirects and Forwards“. The series contains examples
Continue ReadingNote: This post is part of our series on “How to Fix Unvalidated Redirects and Forwards“. The series contains examples
Continue ReadingAn unvalidated redirect allows an attacker to exploit the trust a user has in a particular domain by using it
Continue ReadingNote: This post is part of our series on “How to Fix Insecure Cryptographic Storage“. The series contains examples on
Continue ReadingThe HtmlEncode() method can be used when displaying text directly inside HTML tags using block: <% = Microsoft.Security.Application.AntiXss.HtmlEncode(this.txtName.Text) %>
Continue ReadingNote: This post is part of our series on “How to Fix Insecure Cryptographic Storage“. The series contains examples on
Continue ReadingHashing is the first step towards secure cryptographic storage of data before passing it to the database. It is advisable
Continue ReadingCross-Site Request Forgery (CSRF) is an attack that allows a hacker to perform an action on the vulnerable site on
Continue ReadingMany times application references an object (files) to generate web pages. A simple example is when a user requests his
Continue ReadingNote: This post is part of our series on “How to Fix SQL Injection Vulnerabilities“. The series contains examples on
Continue ReadingIn Spring-MVC, form-tags are used to create jsp page. Spring MVC provides multiple options to encode the html-escape-sequences on server
Continue Reading