|
Hello,
I am wondering if following methods in my script are vulnerable for DOM XSS attack? If yes, what is the best practice to write them. Kindly help if you can guide about it.
1. document.createElement()
2. document.getElementsByTagName()
(function() {
var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
})();
Thank you for your time.
Best Regards,
Supriya
|
|
|
|
|
How to fake or declare a kendo controls in jasmine test. I can spyon the mothod that has the code but now i want to test logic in javascript
javascript/Angularjs
var grid = $("#Grid").data("kendoGrid");
var multiselect= $('#multiselect').data('kendoDropDownList').value();
the errors I get is Cannot read property 'dataItems' of undefined and Cannot read property 'dataItems' of null respectively
MVC
My controls is as follows @(Html.Kendo() .MultiSelectFor(m => m.id) .Name("Test")) in the View
Thanks in advance
Phetole
|
|
|
|
|
I have developed a website by css and html, would you mind anybody to check my site and give me a good suggestion? my site is http:
|
|
|
|
|
|
It needs a lot of work. The UI looks pretty weak. I'd suggest studying CSS design techniques and looking at other sites.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
Dear Experts ,
I have developed a web application using asp.net C#.I want retrieve lots of images from database
and show on Datalist control.I tried but it shows only cross mark instead of actual image.
please help me .
|
|
|
|
|
|
Hi. I have created an ASP.NET MVC 4 application and I published it on a ftp server. When I access the link, it shows me the files that are in the folder, not the index page, so I think something is missing from there. Can anybody tell me if I have to do something else after publishing the project? I just created a project and I uploaded to the server to see if it works.
|
|
|
|
|
|
Sorry for repost, I thought I have chosen the wrong category.
|
|
|
|
|
|
Go to ParentThank you for your reply. I have found the problem.
The problem was caused by the web server, because it didn't accept ASP.NET version for my project. So I have to choose another provider.
Sorry for repost, I thought I have chosen the wrong category.
|
|
|
|
|
i am presently working on a web application using php, but i dont know how to limit the number of users connected to the system via a router. Please is there a way to go by this? Any answer would be appreciated.. thank you
|
|
|
|
|
where you deployed your web application? it it web server or development pc? how you plan to limit the users? ( web server or from network router?)
|
|
|
|
|
I am using a web server (Wamp).
|
|
|
|
|
How to define +91 as default value on TextBox in simple html, and what the good way when we have to save in database
|
|
|
|
|
can you explain a bit more? Do you want to prefix +91 country code with your textbox value here?
modified 20-Sep-20 21:01pm.
|
|
|
|
|
Please do not crosspost.
Just put value="+91" on the textbox and that will default it.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
Hi,
Scenario: Windows forms application is the client talking to a WCF service exchanging sensitive data in both directions
1. Transport Security
• SSL using server certificate with Anonymous client authentication - is encryption of message optional?
o What ensures that the message is definitely encrypted?
o Symmetric key is negotiated for message encryption, but what controls the strength of this key 128-bit / 256-bit etc.?
• If an additional layer of custom encryption/decryption logic is implemented along with SSL, specifically for message security, are there any drawbacks?
2. Message Security
• When message security is enabled over HTTP (no SSL) and a server certificate is provided in the configurations, how is the message encrypted/decrypted - with what key and how is the key exchanged?
• When message security is enabled over HTTPS (with SSL certificate) is the encryption/decryption happening twice?
o Is it possible to configure an Anonymous client (no client certificate/authentication) in this scenario?
o Is it possible to configure different certificates for SSL negotiation and for message encryption/decryption?
o What key used for message encryption - same as SSL negotiated key or new key based on the provided certificate?
3. SSL Server Certificate Validation by client
• By default, client validates the certificate during initial handshake - what all information of the certificate, exactly are validated and what are not validated? This validation is done by whom – .NET framework on the client or the OS itself?
o How different is this validation, from X509Certificate2.Verify() method call on the certificate, if done explicitly?
• In client code, if the callback to ServicePointManager.ServerCertificateValidationCallback delegate is registered, does this method get called before or after the automatic validation of server certificate?
Thanks in advance for your help.
|
|
|
|
|
|
Please advice on which rule has been violated and what else should be done.
[Edit] My bad! I see there is WCF group under general programming! Sorry!
modified 11-Aug-15 5:54am.
|
|
|
|
|
they include the classes room time teacher
|
|
|
|
|
|
hello guys I want to build my own small project and its a webapp . its like an SMS messaging app. that you can send free SMS message to all around the world or in a specific country like for ex. only in Philippines. ? so do you guys know any free framework that can implement this? is it possible? if it its, please help me to give any ideas to build this project and I know only HTML,CSS js,php&mysql can those mentioned languages can implement this kind of project?
very much thanks
|
|
|
|
|
You have been posted this 'question' three times in the last half hour. Please stop it! Pick the forum most fitting to you and leave it there...
And read our comments too
Skipper: We'll fix it.
Alex: Fix it? How you gonna fix this?
Skipper: Grit, spit and a whole lotta duct tape.
|
|
|
|