It's not a secret anymore!*
The moose likes Security and the fly likes Can anyone tell me something about <![CDATA[]]>]]> XSS ? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of OCA/OCP Java SE 7 Programmer I & II Study Guide this week in the OCPJP forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Can anyone tell me something about <![CDATA[]]>]]> XSS ?" Watch "Can anyone tell me something about <![CDATA[]]>]]> XSS ?" New topic
Author

Can anyone tell me something about <![CDATA[]]>]]> XSS ?

dinesh maddy
Greenhorn

Joined: Mar 30, 2012
Posts: 6
Hi,

Can anyone tell me something about <![CDATA[]]>]]> XSS vulnerability?

please have a look at the following link.

https://www.owasp.org/index.php/Testing_for_XML_Injection_(OWASP-DV-008)

It tells something about CDATA section delimiters: <![CDATA[ / ]]>

Can anyone elaborate that, with examples?

Also is it associated with .xhtml pages? Is it required to handle CDATA "]]>" character for XSS in .html application?

Regards,
Dinesh
 
It is sorta covered in the JavaRanch Style Guide.
 
subject: Can anyone tell me something about <![CDATA[]]>]]> XSS ?