Thanks Michael - that helps clear things up for me.
B
On Feb 8, 2008, at 8:40 AM, Michael Peters wrote:
Barry Moore wrote:
Basically one version of an XSS attack would be for me to enter
javascript code into a form on your web page. Then if you include my
form submission in other web pages
Barry Moore wrote:
> Basically one version of an XSS attack would be for me to enter
> javascript code into a form on your web page. Then if you include my
> form submission in other web pages then my javascript could execute on
> any other users machine that subsequently loaded those tainted pag
Sorry for the second post. I decided that this topic has diverged
enough it should be a separate thread. Reply to this one instead if
you see it in time.
This is an interesting thread, and XSS is something that I haven't
really understood. Let me see if I'm understanding this correctly:
