This week's book giveaway is in the OO, Patterns, UML and Refactoring forum.
We're giving away four copies of Refactoring for Software Design Smells: Managing Technical Debt and have Girish Suryanarayana, Ganesh Samarthyam & Tushar Sharma on-line!
See this thread for details.
The moose likes JSP and the fly likes How to prevent cross site scripting attack ? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


JavaRanch » Java Forums » Java » JSP
Bookmark "How to prevent cross site scripting attack ?" Watch "How to prevent cross site scripting attack ?" New topic
Author

How to prevent cross site scripting attack ?

Sathi Krishna
Ranch Hand

Joined: Oct 21, 2007
Posts: 51

Hi

In my web application we are unable to prevent the XSS(Cross Site Scripting) attack on web pages.
So provide me the better solution for this.

Thank You
SvKrishnaReddy
Bear Bibeault
Author and ninkuma
Marshal

Joined: Jan 10, 2002
Posts: 63195
    
  69

Are you properly encoding untrusted text? The <c:out> JSTL tag is perfect for this.


[Asking smart questions] [Bear's FrontMan] [About Bear] [Books by Bear]
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: How to prevent cross site scripting attack ?
 
It's not a secret anymore!