Talk:HTML Injection

From OWASP
Revision as of 07:37, 24 January 2013 by Josef Nedstam (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

I don't agree on the Related Controls, the XSS prevention cheat sheet does not solve examples where e.g. content is given in parameters etc. Validation might work somewhat, but plaintext parameter values would be solved by refactoring and doing indirect references to content.