hi all
Can anyone know how to avoid cross-site scripting sccurity threat. I have an applicatin which uses JSP,servlets,Beans,javascript.I dont know much abt this & As for as i know this involves entering of HTML tags(like <script></script> in the text boxes,text areas and in hyperlinks to maliciously execute some code in the users browser (by using the dynamically generated page from the server on submitting the form containing these tags)
what i want to know is
How to avoid the users from entering HTML tags in the input boxes
How to avoid the problem on the server side
Pls submit some code examples/related urls
Can anyone know how to avoid cross-site scripting sccurity threat. I have an applicatin which uses JSP,servlets,Beans,javascript.I dont know much abt this & As for as i know this involves entering of HTML tags(like <script></script> in the text boxes,text areas and in hyperlinks to maliciously execute some code in the users browser (by using the dynamically generated page from the server on submitting the form containing these tags)
what i want to know is
How to avoid the users from entering HTML tags in the input boxes
How to avoid the problem on the server side
Pls submit some code examples/related urls