13 Matching Annotations
- Dec 2022
-
cheatsheetseries.owasp.org cheatsheetseries.owasp.org
- Aug 2022
-
cheatsheetseries.owasp.org cheatsheetseries.owasp.org
- Dec 2021
-
www.newscientist.com www.newscientist.com
-
author.fullName}. (n.d.). Fake covid-19 vaccine certificates are being sold on the dark web. New Scientist. Retrieved December 7, 2021, from https://institutions.newscientist.com/article/2299962-fake-covid-19-vaccine-certificates-are-being-sold-on-the-dark-web
Tags
- lang:en
- security
- restrictions
- QR code
- leak
- USA
- hospitality
- is:news
- dark web
- fake
- EU
- COVID-19
- vaccine passport
- vaccine certificate
- vaccine
Annotators
URL
-
- Feb 2021
-
stackoverflow.com stackoverflow.com
-
that's a point, but I would say the opposite, when entering credit card data I would rathre prefer to be entirely in the Verified By Visa (Paypal) webpage (with the url easily visible in the address bar) rather that entring my credit card data in an iframe of someone's website.
-
-
stackoverflow.com stackoverflow.com
-
IFRAME element may be a security risk if any page on your site contains an XSS vulnerability which can be exploited
-
- Jul 2020
-
amp.dev amp.dev
-
While stylesheets can be reworked relatively easily with AMP by inlining the CSS, the same is not true for JavaScript. The tag 'script' is disallowed except in specific forms. In general, scripts in AMP are only allowed if they follow two major requirements: All JavaScript must be asynchronous (i.e., include the async attribute in the script tag). The JavaScript is for the AMP library and for any AMP components on the page. This effectively rules out the use of all user-generated/third-party JavaScript in AMP except as noted below.
-
- Mar 2020
- Nov 2019
-
softwareengineering.stackexchange.com softwareengineering.stackexchange.com
-
What technical details should a programmer of a web application consider before making the site public?
-
- Sep 2018
-
www.html5rocks.com www.html5rocks.com
- Jan 2018
-
freedom-to-tinker.com freedom-to-tinker.com
-
Session replay scripts are being used on websites to record your keystrokes, mouse movements, and scrolling actions.
-
- Dec 2015
-
developer.mozilla.org developer.mozilla.org
-
It is important to note that the path attribute does not protect against unauthorized reading of the cookie from a different path. It can be easily bypassed using the DOM, for example by creating a hidden iframe element with the path of the cookie, then accessing this iframe's contentDocument.cookie property. The only way to protect the cookie is by using a different domain or subdomain, due to the same origin policy.
-
- Feb 2015