By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
435,030 Members | 2,277 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 435,030 IT Pros & Developers. It's quick & easy.

Accesing the server database using java script

P: 1
Hi,


I need to confirm the security of my new system so that this needs to be tested for the XSS attacks. Is there a way that the client can access the server Database specially secure data by submitting a javascript through input fields?

If so, please be kind enough to tell me a way to test and confirm this.
Oct 17 '08 #1
Share this Question
Share on Google+
1 Reply


gits
Expert Mod 5K+
P: 5,330
most likely you should be aware of SQL-injection when trying to secure your database - with XSS an attack is usually used to hijack user-information through modifying the page a user gets from your server, even though the injected JavaScript-Code might retrieve sensitive information from your database and send it to whereever ... just try to inject something. So the answer to your question is YES ... but i will not show you how to test it you might search the web and you will find enough to start an attack your own site to test it for yourself.

this forum will not provide any information, or guideline to do such things ... that potentially could be used for malicious attacks ...

kind regards
Oct 17 '08 #2

Post your reply

Sign in to post your reply or Sign up for a free account.