• Post Reply Bookmark Topic Watch Topic
  • New Topic

Phishing attack  RSS feed

 
Greenhorn
Posts: 6
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello,

I have a query regarding the phishing attacks.

Consider this example:

www.test.com?mylink=_test&mytopic=_phishing

Consider the above url.Lets say if the front user is able to see only the www.test.com and the rest parameters can be trapped in the request by the attacker.So the attacker can replace the parameter values and insert any malicious script in it. So If I want to avoid redirecting to any malicious script eventhough the attacker enetrs any thing, how can that be possible through java.

Thanks
Sagar
 
Rancher
Posts: 42972
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Assuming that your web app is handling this URL, what is connection between anything an attacker might alter in the URL parameters and "redirecting"? Also, can you be more precise about what you mean by "malicious script"? You seem to use it for both something the attacker embeds in the URL parameters, and some destination the request might somehow be redirected to...?
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!