Skip to Content
avatar image
Former Member

Whitelist Security

Hi,

I develop a webapplication. There are some textfields, which are endangered for Cross-Site Scripting. That's why I want to implement a whitelist to protect the application. But I don't know how to create a whitelist. Because if I allow all charakters a-zA-Z0-9 than the XSS-Fragment like "<" or "script" or someting else is allowed too.

Do you know how to develop such a whitelist-procedure?

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • avatar image
    Former Member
    Jun 01, 2010 at 09:01 AM

    Or have somebody worked with a whitelist?

    Add comment
    10|10000 characters needed characters exceeded