Tagged Questions

votes

3answers

76 views

Is it safe to put an ID (will insert in DB) into a hidden input?

Here's the summary of my code: My website basically just loops the content of all the rows of a certain table; however, at times, I'll need to obtain an individual ID from a certain row. The hidden ...

asked 2 days ago

Mico Abrina
947

votes

3answers

37 views

How can I secure user submitted HTML markup?

Before I start I'd like to say I have read similar questions here but I don't think it really answers the question: Show HTML user input, security issue and Security risks from user-submitted HTML I ...

html security script

asked Jun 7 at 22:02

DrK
326

vote

1answer

46 views

What are precautions you should take when you allow users to edit HTML and CSS on your website?

Tumblr is really impressive in the sense that it allows users to customize their profiles and such. You're allowed to edit the HTML and CSS of your profile. This is something I want to apply to my ...

html css security customization web-security

asked Jun 2 at 6:17

Mico Abrina
947

-1

votes

0answers

57 views

Secure an opensource website [closed]

I would like to know how people develop and protect website when the source code is open source. I mean, every body can read and test the code and try to hack the website in local... Which type of ...

php html security flaws

asked May 31 at 16:47

Ser
11

votes

1answer

15 views

MVC Validate Sensitive information like ProjectId,UserIs etc?

I am creating one application using ASP.NET MVC 4.5/5.4. i had model public class user { prop string userId{ get; set;} prop string email{ get; set;} } i am use it to view and taking userId in ...

html html5 security asp.net-mvc-4

asked May 31 at 10:58

Nilesh_Moradiya
112

votes

3answers

119 views

PHP: Website getting hacked weirdly [duplicate]

I'm currently developing a web interface in PHP/HTML for a Database course project. Basically, there is an input field : <form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="POST"> ...

php html security injection hacking

asked May 29 at 15:06

Floran Gmehlin
876

votes

0answers

16 views

CDNs for static HTML

Would it make sense to use CDN's to host your pages too? E.g., if your website is all static HTML... Initially, it seems there could be a few problems with this approach: 1) Browsers will display ...

html security caching hosting cdn

asked May 29 at 5:11

ManRow
380512

votes

1answer

19 views

Analyze page to see which resource is not transfered in https

I'm trying to use SSL for all the traffic of my website: https://alireza-noori.com. After a lot of struggle I managed to install certificate and make the HTTPS work. However, whenever I visit my ...

html security ssl https

asked May 9 at 2:40

Alireza Noori
2,48821747

votes

1answer

61 views

Cross domain authentication across an iframe without login

I want the user to be able to submit and render untrusted HTML within an application on say domain example1.com. In order to prevent malicious XSS from capturing the user's cookies the idea was to ...

javascript html security cross-domain xss

asked May 5 at 1:18

Bjorn Tipling
11.5k45395

vote

1answer

66 views

How chrome executable autorun?

So, on http://google.com/chrome/ you can download chrome. You chose chrome channel and accept EULA. Web installer starts download and after few seconds autolaunch itself and immediatly starts ...

javascript html windows security

asked Apr 24 at 14:34

Way No
525

-1

votes

1answer

51 views

Captcha vs Hidden Field [closed]

I'm been recently wondering if the complexity of a decent captcha was acceptable for a simple website. I wonder if only using an input field with a hidden attribute in CSS would be sufficient for a ...

html security captcha

asked Apr 18 at 9:20

Xaltar
485110

vote

1answer

69 views

Prevent others from calling your JSON web service

Let's say I have some code that creates an HTML page with a JSON service call. How can I prevent others from copying and pasting the source code, calling the service and getting the result set for ...

html json web-services security

asked Apr 15 at 13:44

Pabuc
2,00131032

votes

1answer

22 views

Signing an iframe form to validate its sender

I have: A form on static page. Two sites (A - the site, where I need to insert this form within iframe, B - the site, where I need to verify form and send answer to back to iframe). I need some ...

html security post iframe singing

asked Apr 15 at 13:07

Constantine
886

-3

votes

1answer

43 views

What is this umsdataelement doing in my browser? [closed]

I've inherited a heavily modified Firefox (lots of Add-ons) from the previous occupant of this desk. In some browser windows (developing in PHP on localhost), an unexpected element has appeared at ...

php html security firefox-addon

asked Apr 15 at 1:23

John Horner
194

votes

1answer

46 views

PHP cookies and member security

I've created a forum which uses a PHP session when logged in to determine the user id, and cookies for log-term login. I suppose I have two questions: Is this the best/securest method? Cookies can ...

php html security cookies

asked Apr 12 at 22:28

Tom McPadden
568

15 30 50 per page

newest security html questions feed

397

questions tagged

security html

php × 129
javascript × 110
xss × 51
mysql × 28
forms × 26
iframe × 25
browser × 18
asp.net × 16
jquery × 16
web-security × 15
css × 11
login × 10
database × 9
ajax × 9
c# × 8
internet-explorer × 8
validation × 8
ssl × 7
html5 × 7
java × 7
https × 7
firefox × 6
sql × 6
web × 6
http × 6

Tagged Questions

Related Tags