File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes HTML, CSS and JavaScript and the fly likes javascript status Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » HTML, CSS and JavaScript
Bookmark "javascript status" Watch "javascript status" New topic

javascript status

Grega Leskovšek
Ranch Hand

Joined: Nov 13, 2008
Posts: 68
Why some geeks to gurus do not like javascript - one of the reason I heard of that it can be easily hijacked? any other thoughts and my God, why?

--Always, Grega from Peace refuge
Bear Bibeault
Author and ninkuma

Joined: Jan 10, 2002
Posts: 62577

Browser vulnerabilities have nothing at all to do with JavaScript as a language.

Issues like XSS (Cross-site scripting) have to do with sloppy coding, not anything inherent in the language.

The Ninja book does cover how to avoid security pitfalls when doing things like run-time code evaluation, which can introduce vulnerabilities when coded without care.

[Asking smart questions] [Bear's FrontMan] [About Bear] [Books by Bear]
wood burning stoves
subject: javascript status