This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Template:Featured article"
From OWASP
| Line 1: | Line 1: | ||
| − | ''' | + | '''Two free Java EE filters for CSRF, Reflected XSS, and Adobe XSS''' |
| − | + | OWASP contributors from '''[http://www.aspectsecurity.com Aspect Security]''' have developed two new Java EE filters to protect against common web attacks. Just add a few lines to your web.xml file and enjoy the protection. | |
| − | |||
| − | |||
| − | |||
| − | + | ; '''[[CSRF Guard|CSRF and Reflected XSS Filter for Java EE]] | |
| + | : This filter adds a random token to forms and URLs that prevent an attacker from executing both [[CSRF]] and reflected [[XSS]] attacks. | ||
| − | + | ; '''[[PDF Attack Filter for Java EE|Adobe XSS Filter for Java EE]] | |
| − | + | : This filter protects against the recent XSS attacks on PDF files. By using a redirect and an encrypted token, this filter ensures that dangerous attacks are not passed into the Adobe reader plugin. | |
| − | |||
Revision as of 02:21, 8 January 2007
Two free Java EE filters for CSRF, Reflected XSS, and Adobe XSS
OWASP contributors from Aspect Security have developed two new Java EE filters to protect against common web attacks. Just add a few lines to your web.xml file and enjoy the protection.
- CSRF and Reflected XSS Filter for Java EE
- This filter adds a random token to forms and URLs that prevent an attacker from executing both CSRF and reflected XSS attacks.
- Adobe XSS Filter for Java EE
- This filter protects against the recent XSS attacks on PDF files. By using a redirect and an encrypted token, this filter ensures that dangerous attacks are not passed into the Adobe reader plugin.
