Template:XSS alert/nl
Jump to navigation
Jump to search
Cross-site scripting
Security for developers
 | Waarschuwing: De code of configuratie die hieronder wordt beschreven bevat een groot veiligheidsrisico. Systeembeheerders: U wordt geadviseerd om dit niet te gebruiken totdat het veiligheidsprobleem is opgelost. Probleem: Vulnerable to Cross-site scripting attacks, because it passes user input directly to the browser. This may lead to user accounts being hijacked, among other things. Oplossing: strictly validate user input and/or apply escaping to all characters that have a special meaning in HTML |
Template documentation
- Beschrijving
- Adds an alert box describing a Cross-site scripting vulnerability in including Extension page. Also adds including page to Category:Extensions with XSS vulnerabilities
- If your extension was tagged with this template please read
- For extension developers and extension users:
- Specifically for extension developers:
- Voorbeeld
{{XSS alert|~~~~}}
- Creates
| Waarschuwing: De code of configuratie die hieronder wordt beschreven bevat een groot veiligheidsrisico. Systeembeheerders: U wordt geadviseerd om dit niet te gebruiken totdat het veiligheidsprobleem is opgelost. Probleem: Vulnerable to Cross-site scripting attacks, because it passes user input directly to the browser. This may lead to user accounts being hijacked, among other things. Duesentrieb ⇌ 13:43, 22 March 2007 (UTC) Oplossing: strictly validate user input and/or apply escaping to all characters that have a special meaning in HTML Duesentrieb ⇌ 13:43, 22 March 2007 (UTC) |