Contenu connexe
Similaire à Basic Housekeeping - Plugging Obvious Security Holes In Web Sites - Paris Web2009 (20)
Plus de Christian Heilmann (20)
Basic Housekeeping - Plugging Obvious Security Holes In Web Sites - Paris Web2009
- 77. Caja vs “JavaScript”
★ eval()
★ new Func9on()
★ Strings as event handlers (node.onclick = '...';)
★ Names ending with double / triple underscores
★ with func9on (with (obj) { ... })
★ Implicit global variables (specify var variable)
★ Calling a method as a func9on
★ document.write
★ window.event
★ .onclick
★ OpenSocial gadgets.io.makeRequest return JS