Questions about xss
Read more about xss
python (65.1k questions)
javascript (44.2k questions)
reactjs (22.7k questions)
java (20.8k questions)
c# (17.4k questions)
html (16.3k questions)
r (13.7k questions)
android (12.9k questions)
After adding HSTS and Xframe policies it's still not showing up in the browser. (NGINX)
I am using docker to run a react app with Nginx not sure why it's not implementing the headers I added.
http{
include /etc/nginx/mime.types;
default_type application/octet-stream;
client_max_body...
Tomer Ram
Votes: 0
Answers: 0
How to securely implement authentication in Single Page Applications (SPAs) with a decoupled API
I have been researching how best to store authentication tokens in a Single Page Application (SPA). There is some existing debate about this topic on SO but as far as I can see, none offer concrete so...
Obvious_Grapefruit
Votes: 0
Answers: 3
Sanitize image content and remove embedded Javascript
For an image upload API that we’re building, is there any guidance on checking/sanitising for malicious content ?
I’ve seen examples in the internet where we can add JavaScript inside an image and upl...
Arkantos
Votes: 0
Answers: 2
XSS PoC: Hide Rendered Characters in DOM
I've started playing with XSS to better improve my security posture at work. I've been able to successfully exploit a reflected XSS attack using a redirected POST form, but I can't seem to remove the ...
FuegoJohnson
Votes: 0
Answers: 1