Simon Willison’s Weblog

Items tagged xss, security in 2006

Filters: Year: 2006 × xss × security ×

Why is XSS so common? Because dev tools don’t escape things by default. # 2nd August 2006, 8:57 pm

Don’t serve JSON as text/html. Another sneaky XSS trick. # 5th July 2006, 11:46 pm

Mozilla causing XSS in Livejournal. Their recent worm attack was caused by the -moz-binding CSS property. # 22nd January 2006, 9:37 pm

Xanga Hit By Script Worm (in December) (via) Description of an XSS worm that hit Xanga last month. # 21st January 2006, 8:47 pm