Web 2.0 Designer News

BlackHat USA 2009; Eduardo Vela Nava ( sirdarckcat ) and David Lindsay presented a paper entitled “ Our Favorite XSS Filters and How to Attack Them ”. Very interesting paper, you should definitely take a look at it. In this paper, besides other things, they presented a very interesting way to bypass XSS filters using Unicode charcters.

View post:
Security risks associated with utf8_decode and XSS filters