WhiteHat Security logo
  • Search
  • TCO
  • FAQ
  • Contact
  • Login
    • Customer Portal
    • Partner Portal
    • Scout Login
    • Sentinel Login
    • Sentinel Login – EU
  • 30 Days Free
  • Products
    • Overview
    • Dynamic Application Security Testing (DAST)
      • Peer Benchmarking
      • WhiteHat Security Index (WSI)
      • Interactive Application Security Testing (IAST)
      • Integrations
    • Static Analysis For Developers
    • Static Application Security Testing (SAST)
      • Microservices
      • Directed Remediation
      • Software Composition Analysis
      • Integrations
    • Mobile Application Security Testing
    • Asset Discovery
    • eLearning
      • WhiteHat Certified Secure Developer (WCSD)
    • Professional Services
    • Solution By Role
      • Executives
      • IT Security
      • Developers
    • Solution By Need
      • Web Application Security
      • DevSecOps
      • Microservices
      • Risk Assessment
      • Compliance
      • Runtime Application Self Protection (RASP)
      • Vulnerability Remediation
    • Solution By Industry
      • Financial Services
      • Retail/eCommerce
      • Healthcare
      • Software & Technology
      • Government
  • Customers
    • Overview
    • Case Studies
    • Gartner Peer Insights
    • Support
  • Learning Labs
  • Company
    • Overview
    • Leadership
    • Threat Research Center
    • In The News
    • Careers
    • Events Calendar
    • Contact
    • Glossary
    • Resources
  • Blog

Blog

BlogXSS
TRENDING NOW
CATEGORIES
TRENDING NOW

INDUSTRY SOLUTIONS

  • Podcast

THOUGHT LEADERSHIP

  • Industry Observations

SECURITY RESEARCH

  • Aviator
  • Technical Insight
  • Tools and Applications
  • True Stories of the TRC
  • Unsung Heroes
  • Vulnerabilities
  • WhiteHat HackerKast

WHITEHAT SENTINEL

  • Events
  • Web Application Security
  • WhiteHat Security Products

THREAT BULLETINS

  • Breaking News
True Stories of the TRC

Circumventing a Blacklist to Exploit Cross-Site Scripting

 Andrew Tieu | July 03, 2018

Blacklisting is not the best or only way to avoid an XSS attack. This web application penetration scenario shows how an attacker could circumvent this safety feature.

Read More
Technical Insight

The Security Angle on Angular

 Eric Sheridan | June 14, 2018

Angular Frameworks on a TypeScript back end: Security improvements for API calls with a warning

Read More
Technical Insight

Open Source Applications and XSS Attacks

 Rob Tate | April 16, 2018
Read More
Static Analysis-WhiteHat Security Products

Find and Fix JavaScript Vulnerabilities Early in the SDLC

 Ruchika Mishra | April 04, 2016

Over the years, JavaScript has been responsible for several security vulnerabilities. WhiteHat Sentinel Source now supports static analysis of client-side JavaScript (.js) files, based on the script source structure in the .html files.

Read More
Vulnerabilities-Web Application Security-WhiteHat HackerKast

#HackerKast 14: Google’s XSS Problem, Delta Airlines, Sands Casino, Eric Schmidt and more Google Facepalms

 Matt Johansen | December 23, 2014
Read More
Technical Insight-Vulnerabilities-Web Application Security-WhiteHat HackerKast

#HackerKast 13 Bonus Round: FlashFlood – JavaScript DoS

 Robert Hansen | December 16, 2014
Read More
Technical Insight-Vulnerabilities-Web Application Security

Infancy of Code Vulnerabilities

 Robert Hansen | December 11, 2014
Read More
Industry Observations-Vulnerabilities-Web Application Security-WhiteHat HackerKast

#HackerKast 8: Recap ofJPMC Breach, Hacking Rewards Programs and TOR Version of Facebook

 Matt Johansen | November 11, 2014
Read More
Industry Observations-Tools and Applications-Vulnerabilities

Bypassing Internet Explorer’s Anti-XSS Filter

 Carlos Munoz | December 04, 2013
Read More
True Stories of the TRC-Web Application Security

Chained Exploits

 Micheal Cottingham | September 28, 2012
Read More

Posts navigation

1 2

Cookie Use

We use cookies to store information on your computer that are either essential to make our site work or help us personalize and improve the user experience. By using this site, you consent to the placement of these cookies. To learn more, see our Cookie Policy.

Agree
Subscribe to Communications:mail

Follow us on:

  • Products
    • Dynamic Application Security Testing (DAST)
    • Static Application Security Testing (SAST)
    • Mobile Application Security Testing
    • eLearning
    • Solutions By Role
    • Solutions By Need
    • Solutions By Industry
  • Customers
    • Case Studies
    • Support
  • Partners
    • Technology Partners
    • Resale Partners
  • Company
    • Leadership
    • Threat Research Center
    • In The News
    • Industry Recognition
    • Careers
    • Events Calendar
    • Community
    • Contact
  • Blog
  • Glossary
  • Learning Labs
  • Resources
  • Trending Now

Tweets by @whitehatsec

WhiteHat Security © 2018

Helping your customers live a safe digital life.

  • Terms & Conditions
  • Privacy Policy
  • Cookie Policy
  • GDPR Compliance
  • Manage Your Communication Preferences
WhiteHat Trustmark