[转载]Javascript Hijacking
原始出处:[url]http://www.fortifysoftware.com[/url]信息来源:邪恶八进制信息安全团队([url]www.eviloctal.com[/url])
As part of the work, we took a look at 12 Ajax frameworks, including Google's GWT, Microsoft Atlas, Yahoo! UI, and a number of open source projects. A lot of the open source projects provide only client-side JavaScript libraries. In the report we point out that almost none of the frameworks protect against JavaScript Hijacking or give programmers any indication that there's anything they need to protect against themselves.
页:
[1]