xss - How to prevent cross site script attacks using javascript -


in application, have used excel grid using mvc3. faced cross site scripting attack issue while testing in grid typing 'alert('hack')' in grid cell input textbox. results in executing script , alert displaying. how can avoid executing scripts using javascript?

if that's needed in order inject code grid must using 'eval' - unless comfortably accomodate arithemetic expressions , cell references in grid (and have capability implement filtering) can't solve problem.


Comments

Popular posts from this blog

How to remove text and logo OR add Overflow on Android ActionBar using AppCompat on API 8? -

html - How to style widget with post count different than without post count -

url rewriting - How to redirect a http POST with urlrewritefilter -