Version almost final
lecture: Don't cross the sites!
Dealing with Cross Site Scripting
Dealing with Cross Site Scripting: What is it? Why is it dangerous? And what can be done about it?
It's 2015 and Cross Site Scripting (XSS) attacks are still ranking high in OWASP's "Top Ten Security Risks".
So what is this XSS and what harm it can do to your site? And more important: How can we prevent those kind of attacks on our websites?I'll talk about some of the bad advice (unfortunately being repeated on the web over and over again) and show you better, more sustainable approaches.