• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1087
  • Last Modified:

Preventing Javascript Injections in Classic ASP

Does anyone have experience/examples of how to prevent JavaScript Injections in Classic ASP
0
rckollar
Asked:
rckollar
  • 5
  • 2
2 Solutions
 
VenabiliCommented:
It really depends on what you are doing in that ASP :)
See a discussion on some types of preventions:
http://www.keyongtech.com/1167255-preventing-form-injection-on-classic
0
 
Wayne BarronAuthor, Web DeveloperCommented:
can you provide an example of this javascript injection
I would like to test it against what protection that I have.
0
 
Wayne BarronAuthor, Web DeveloperCommented:
Check out this please, and see if this is what you are referring too.
http://www.experts-exchange.com/Q_24801116.html#a25540991

Has not been hijacked yet.

Good Luck
Carrzkiss
0
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

 
Wayne BarronAuthor, Web DeveloperCommented:
Needs to be a split their Angel.
Answer = (http:#31135224)
Assisted = (http:#31163665)

Carrzkiss
0
 
Wayne BarronAuthor, Web DeveloperCommented:
Hello Modus - Needs to be a split.
Answer = (http:#31135224)
Assisted = (http:#31163665)

Carzkiss
0
 
Wayne BarronAuthor, Web DeveloperCommented:
To ModernMatt

The link that I provided has 2 links
This is an example Tutorial that I just wrote especially for this Thread.
http://ee.cffcs.com/Q_24801116/Q_24801116.asp
code
http://ee.cffcs.com/Q_24801116/Q_24801116.zip

The files show how to prevent SQL and XSS Injection.
I always present the link to the actual EE page so that people can view the information that is listed on the page.

I wrote this script, it is a SQL & XSS Injection prevention script.
I have been recommended on this script for several EE's and other from outside sources.

No offence ModernMatt,
If you would have clicked on the link that is on the EE page, you would see the following:
http://ee.cffcs.com/Q_24801116/Q_24801116.asp
SELECT, INSERT, UPDATE, DELETE Statements in ASP using Parameter's, in the combat against SQL & XSS INJECTION

So, once again, I will over to Object to this again.

Carrzkiss
0
 
VenabiliCommented:
I thought it was not needed to post but I agree with carrzkiss here. Even if technically the user was asking for Javascript injections, the question is about SQL and XSS ones - they go together. So I would split.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now