Did some web security testing in here - Promods Passed
Posted: 17 Jan 2018 16:17
I today did some voluntary web security testing on both types of XSS (Cross Site Scripting) attacks. The good thing is - ProMods passed it, and I can tell that no malicious user can do any type of XSS attacks.
What is XSS attack?
It's a form of attack when a malicious user sends with the message or any other type of input saves the JavaScript, JQuery or TypeScript code - and other users will get that code executed in their browsers. For example - It could be even a Crypto-Currency miner.
Edit 1:
Checked also fastly the sql injection with 1=1 in topic search, no problems found.
That's all from my side.
What is XSS attack?
It's a form of attack when a malicious user sends with the message or any other type of input saves the JavaScript, JQuery or TypeScript code - and other users will get that code executed in their browsers. For example - It could be even a Crypto-Currency miner.
Edit 1:
Checked also fastly the sql injection with 1=1 in topic search, no problems found.
That's all from my side.