http://www.veracode.com/blog/2008/04/obama-xss-silliness/ Application security testing, analysis, and metrics Thu, 09 Feb 2012 11:59:00 +0000 hourly 1 http://wordpress.org/?v=3.3.1 http://www.veracode.com/blog/2008/04/obama-xss-silliness/comment-page-1/#comment-1036 Marius Fri, 23 May 2008 12:21:10 +0000 http://www.veracode.com/blog/?p=89#comment-1036 Now this is what I always say to people and do in my code! Great thing I found this, probably another favorite rss feed to my collection. Now this is what I always say to people and do in my code! Great thing I found this, probably another favorite rss feed to my collection.

]]> http://www.veracode.com/blog/2008/04/obama-xss-silliness/comment-page-1/#comment-1034 Web Application Programmer Wits » Inking's Security Blog Thu, 22 May 2008 16:46:36 +0000 http://www.veracode.com/blog/?p=89#comment-1034 [...] [1] http://www.veracode.com/blog/?p=89 [...] [...] [1] http://www.veracode.com/blog/?p=89 [...]

]]> http://www.veracode.com/blog/2008/04/obama-xss-silliness/comment-page-1/#comment-1030 The State of Web Security | Mike Andrews Tue, 20 May 2008 23:45:04 +0000 http://www.veracode.com/blog/?p=89#comment-1030 [...] on the web, despite it being one of the simplest to mitigate against.  As the guys as Veracode point out, and the guidance from OWASP, it’s not all about input validation (although [...] [...] on the web, despite it being one of the simplest to mitigate against.  As the guys as Veracode point out, and the guidance from OWASP, it’s not all about input validation (although [...]

]]> http://www.veracode.com/blog/2008/04/obama-xss-silliness/comment-page-1/#comment-971 Obama » Obama XSS Silliness Tue, 22 Apr 2008 17:17:54 +0000 http://www.veracode.com/blog/?p=89#comment-971 [...] Zero in a bit wrote an interesting post today on Obama XSS SillinessHere’s a quick excerpt Apparently the security blunder of the weekend goes to the Barack Obama campaign for having XSS vulnerabilities throughout their website. There’s no need for me to rehash the story, you can read other articles that describe what happened. My thoughts on the matter are as follows: I wish the media wouldn’t refer to this as “hacking Obama’s website” because it’s not quite accurate; XSS attacks end users, not the web site itself. Clearly one makes a better headline. Can people (that’s you, secur [...] [...] Zero in a bit wrote an interesting post today on Obama XSS SillinessHere’s a quick excerpt Apparently the security blunder of the weekend goes to the Barack Obama campaign for having XSS vulnerabilities throughout their website. There’s no need for me to rehash the story, you can read other articles that describe what happened. My thoughts on the matter are as follows: I wish the media wouldn’t refer to this as “hacking Obama’s website” because it’s not quite accurate; XSS attacks end users, not the web site itself. Clearly one makes a better headline. Can people (that’s you, secur [...]

]]>