Cross-site scripting (XSS) and SQL Injection are considered the weakest points in software, while the buffer overflow comes third, according to cwe.
根据CWE的列表,跨平台脚本攻击(XSS)和SQL注入被认为是软件最薄弱的环节,而位于第三位的是缓冲区溢出。
The httpOnlyCookies attribute is useful as a measure against cross-site scripting attacks; it indicates to the browser that the cookie should not be accessible from scripts.
httpOnlyCookies属性对付交叉站点脚本攻击十分有用;它意味着浏览器将无法通过脚本语言访问Cookie。
In this article, we discussed how attackers use cross-site scripting as a technique to launch attacks against Web sites.
本文中,我们讨论了攻击者如何使用跨站点脚本编制作为对网站发动攻击的技术。
This security restriction is to avoid cross-site scripting attacks (XSS).
这个安全限制是为了避免跨站点脚本攻击(XSS)。
This script is vulnerable to cross-site scripting attacks because it blindly prints out submitted form data.
该脚本容易受跨站点脚本攻击,因为它盲目输出所提交的表单数据。
Normally, this is a very good behavior because it prevents cross-site scripting security vulnerabilities from occurring when you access pages on the Web.
通常,这是一种很好的行为,因为它防止了在访问网页时跨站点脚本安全性隐患的发生。
In the case of cross-site scripting prevention, you need to filter out the escape characters for the scripting languages supported by the browser.
对于跨站点脚本预防情况,您需要过滤掉浏览器支持的脚本语言的转义字符。
Cross-site scripting attacks pose an immense risk.
跨站点脚本攻击带来了巨大的风险。
After an application on a Web site is known to be vulnerable to cross-site scripting, an attacker can formulate an attack.
当攻击者知道某一网站上的应用程序易受跨站点脚本编制攻击后,他就可以规划攻击。
Cross-site scripting attacks allow hackers to embed a malicious script on your visitor's browser and then execute the script in order to gather data.
跨站点脚本攻击使黑客能够将恶意脚本嵌入到访问者的浏览器中,然后执行该脚本收集数据。
Statistics show that hackers are skilled at using techniques such as cross-site scripting to penetrate perimeter defenses and reach the database.
统计数据说明,黑客完全有能力使用跨站点脚本等技术突破防御边界,到达数据库。
Since attackers are usually trying to add malicious scripts, this particular variation is called a "cross-site scripting attack" (XSS attack).
由于攻击者通常是试图添加恶意的脚本,因些这种变化被称为“交叉站点脚本攻击” (XSS攻击)。
When an attacker introduces a malicious script to a dynamic form submitted by the user, a cross-site scripting (XSS) attack then occurs.
当攻击者向用户提交的动态表单引入恶意脚本时,就会产生跨站点脚本(XSS)攻击。
Every month cross-site scripting attacks are found in commercial sites and advisories are published explaining the threat.
商业站点上每月都会发现跨站点脚本编制的攻击,并且每月都会发布解释这种威胁的报告。
What are some examples of cross site scripting attacks?
交叉站点脚本攻击的一些例子是什么?
The threats of cross-site scripting.
跨站点脚本编制的威胁。
In the case of the Plants by WebSphere application, you want to allow your widgets to access other sites for content. How do you allow cross-site scripting responsibly within the browser?
在PlantsbyWebSphere应用程序中,若想允许小部件访问其他站点以获得内容,那么该如何在浏览器内启用跨站点的脚本功能呢?
The software can also be scanned for security issues, such as cross-site scripting and Structured Query Language (SQL) injection vulnerabilities.
软件还可以扫描安全性问题,例如跨站点的脚本以及StructuredQueryLanguage (SQL)注射脆弱性。
Learn more about cross-site scripting on Wikipedia.
在Wikipedia了解有关跨站点脚本 的更多信息。
The first is by far the most popular: cross-site scripting (XSS).
第一个漏洞是最流行的:跨站脚本编程(cross - site scripting,XSS)。
Editable Data Validation - HDIV analyzes all editable fields to remove cross-site scripting and SQL injection attacks.
可编辑数据验证——为了去除跨站点脚本和SQL注入攻击,HDIV分析所有的可编辑数据域。
Ajax Chat has security in mind to prevent code injections, SQL injections, cross-site scripting, session stealing, and other attacks.
AjaxChat还具有安全性,能够防止代码注入、SQL注入、跨站点脚本攻击、会话偷窃以及其他攻击。
Cross-platform scripting language for build-script integration.
构件脚本一体化的交叉平台脚本语言。
New cross-platform, scripting commands are available to help you access Rational ClearQuest information from the command line, as shown in Figure 5. With them, you can do the following
可利用的新交叉平台,脚本命令能够帮助您从命令行来访问RationalClearQuest信息,如图 5 所示。
In addition to handling traditional threats, a mashup application or web page must address such issues as cross-site scripting (XSS) and cross-site request forgery (CSRF), among others.
除了处理传统威胁外,混搭应用程序或web页面必须解决跨站点脚本编写(XSS)和跨站点请求伪造(CSRF)等问题。
Cross-site scripting (XSS for short) is one of the most common application-level attacks that hackers use to sneak into Web applications.
跨站脚本攻击(cross - site scripting,简称XSS),是黑客用来潜入Web应用程序的最普遍的应用程序层攻击之一。
The first, and probably the most severe, is a Cross-Site Scripting (XSS) vulnerability discovered by Brian Mastenbrook and reported on his blog.
第一,可能是最严重的就是BrianMastenbook发现的跨站脚本(XSS)的脆弱,并且在他的博客中报告了这个问题。
Additionally, Cross Site Scripting attacks against Web-based cloud control interfaces have severe repercussions for the overall cloud security.
另外,针对基于Web的云控制界面的跨站脚本攻击会对整个云安全产生严重的影响。
Security issues when binding cross-documents: Limitations in the current dynamic/Ajax solutions prevent cross-site scripting.
跨文档进行绑定的安全问题:当前的动态/Ajax解决方案中的限制防止跨站点脚本编制。
Security issues when binding cross-documents: Limitations in the current dynamic/Ajax solutions prevent cross-site scripting.
跨文档进行绑定的安全问题:当前的动态/Ajax解决方案中的限制防止跨站点脚本编制。
应用推荐