I'm starting to look at the security of HTML forms. So far, my research has identified three main areas of attack:
My question is: Are there more attack vectors for HTML forms than these ? I'm interested in a list of possible attacks through HTML forms.
URI , . " " , SQL-, XSS .. , , JavaScript , .
, , :
- , :
, .
( SQL-).
10. A1-Injection. , CSRF/XSS/Injection , GET HTTP.
<form>, , URL- HTTPS, . "" .
<form>
. , - :
<img src="http://mysite.com/delete_post/4" style="display:none">
, . , , . .
, - (, ), . , . , , .
Source: https://habr.com/ru/post/1762272/More articles:How to check if a directory exists on a specific path programmatically in Objective-C? - objective-cWhat is the best way to localize the localization of LOCBaml or Resx? - wpfHow to change the text while maintaining the original font? - emacsNSFileManager fileExistsAtPath: & symbolic links - objective-chttps://translate.googleusercontent.com/translate_c?depth=1&pto=aue&rurl=translate.google.com&sl=ru&sp=nmt4&tl=en&u=https://fooobar.com/questions/1762271/setonclicklistener-not-response-on-android-webview&usg=ALkJrhgo_CbpdkCmVVVvm16T2uY6ga4kXQRegEx whitelist problem - stringCan JavaScript get confused between local variables? - javascriptQuestion about Java.lang.Error - javaHow to set the default process scheduling priority (“good” value) for all users with a remote protocol? - linuxChanging a static array - cAll Articles