Srirampriya
asked on
Cross Site Scripting implementation
Hi All
There was some penetrating tests that was conducted in our existing production java application, and one of the recommendation is to address cross site scripting.
I need inputs from experts on implementing this cross side without the need make changes in every artifact
something like setting up some config file, etc if possible
Regards
There was some penetrating tests that was conducted in our existing production java application, and one of the recommendation is to address cross site scripting.
I need inputs from experts on implementing this cross side without the need make changes in every artifact
something like setting up some config file, etc if possible
Regards
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
In Filter you can do set encoding or URLEncode.
ASKER
Hi Dravid
could you share some reference or code fragments on this.
also I do not want to change in all my files. can you please explain a bit
could you share some reference or code fragments on this.
also I do not want to change in all my files. can you please explain a bit
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Need to try
when all your request/response goes to filter or interceptor .. then you cant get the form values in the URL. you can stop Corss Site scripting .