This week's book giveaway is in the Servlets forum.
We're giving away four copies of Murach's Java Servlets and JSP and have Joel Murach on-line!
See this thread for details.
The moose likes Security and the fly likes Can anyone tell me something about <![CDATA[]]>]]> XSS ? Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Can anyone tell me something about <![CDATA[]]>]]> XSS ?" Watch "Can anyone tell me something about <![CDATA[]]>]]> XSS ?" New topic
Author

Can anyone tell me something about <![CDATA[]]>]]> XSS ?

dinesh maddy
Greenhorn

Joined: Mar 30, 2012
Posts: 6
Hi,

Can anyone tell me something about <![CDATA[]]>]]> XSS vulnerability?

please have a look at the following link.

https://www.owasp.org/index.php/Testing_for_XML_Injection_(OWASP-DV-008)

It tells something about CDATA section delimiters: <![CDATA[ / ]]>

Can anyone elaborate that, with examples?

Also is it associated with .xhtml pages? Is it required to handle CDATA "]]>" character for XSS in .html application?

Regards,
Dinesh
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Can anyone tell me something about <![CDATA[]]>]]> XSS ?
 
Similar Threads
Are the following characters XSS vulnerable?
Build Failed
MultiDimenaional Array sort
How to declare an attribute of xml element as CDATA type
jasper reports with subreports