Skip to Main Content
Forums

Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

XSS cross site scripting attack prevention

843811Jul 12 2007 — edited Aug 9 2007
hi all,

first, i don't know if this question should be posted in this forum. If not, please let me know.

i'm trying to find a solution for this issue. I've searched but couldn't find a clear answer about preventing from XSS in websphere 5.0.

another question is if we use the filtering and encoding solution in the servlets, how could it prevent us from a script inserted and executed before the data is sent to the servlet? (or this scenario cannot be realized?)

thanks in advance.
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Sep 6 2007
Added on Jul 12 2007
#other-security-apis-tools-and-issues
9 comments
564 views