shushanxingzhe / json-template

Automatically exported from code.google.com/p/json-template
0 stars 0 forks source link

Idea: implement XSS detection #14

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago
http://googleonlinesecurity.blogspot.com/2009/03/reducing-xss-by-way-of-automati
c.html

This protects against the template author making a mistake in specifying
the escaping formatter.  Since JSON Template is trivial to tokenize, it
shouldn't be that hard.

Original issue reported on code.google.com by gtempacc...@yahoo.com on 10 Apr 2009 at 7:40

GoogleCodeExporter commented 8 years ago

Original comment by gtempacc...@yahoo.com on 10 Apr 2009 at 7:40

GoogleCodeExporter commented 8 years ago

Original comment by gtempacc...@yahoo.com on 7 Nov 2009 at 9:25