my dog learned polymorphism
The moose likes HTML, CSS and JavaScript and the fly likes javascript status Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Engineering » HTML, CSS and JavaScript
Bookmark "javascript status" Watch "javascript status" New topic

javascript status

Grega Leskovšek
Ranch Hand

Joined: Nov 13, 2008
Posts: 76
Why some geeks to gurus do not like javascript - one of the reason I heard of that it can be easily hijacked? any other thoughts and my God, why?

--Always, Grega from Peace refuge
Bear Bibeault
Author and ninkuma

Joined: Jan 10, 2002
Posts: 63844

Browser vulnerabilities have nothing at all to do with JavaScript as a language.

Issues like XSS (Cross-site scripting) have to do with sloppy coding, not anything inherent in the language.

The Ninja book does cover how to avoid security pitfalls when doing things like run-time code evaluation, which can introduce vulnerabilities when coded without care.

[Asking smart questions] [About Bear] [Books by Bear]
I agree. Here's the link:
subject: javascript status
It's not a secret anymore!