Talk:DOM Based XSS

From OWASP
Revision as of 15:57, 12 April 2012 by Sergey Pomytkin (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

I’d really like to find examples of code and malicious input illustrating scenario where ESAPI encodeForHTML wouldn't be sufficient and encodeForHTMLAttribute would remediate vulnerability.