[转载]Hacking RSS and Atom Feed Implementations
原始连接:[url]http://www.spidynamics.com/assets/documents/HackingFeeds.pdf[/url]信息来源:[url]http://www.spidynamics.com/[/url]
This white paper discusses various forms of attacks based on Web feeds that follow the RSS, Atom and XML standards. This paper does not extensively cover each XML element and its usage within Web-based feeds, nor does it address other vulnerability scanarios such as buffer overflows and other XML-specific risks. The goal of this paper is to outline the risks of lesser-known threats which are currently emerging on the Web utilizing Cross-Site-Scripting.
页:
[1]