Article Search Engine

Articles tagged with XSS

XSS is a serious problem
7:00am Tuesday 19 July 2011
Tags: recruitment software job boards job board software xss owasp security hacking javascript

I've written about XSS (cross-site scripting) numerous times on this blog. If you run a job board, or manage your recruitment website take note... XSS is a very serious problem! read more...

OWASP Top 10 and your Recruitment Website - Part 2
4:37pm Thursday 09 December 2010
Tags: recruitment security recruitment websites owasp job boards dmitry kulshitsky security hacking insecure direct object references xss sql injections cross-site request forgery csrf

In part 1 of this series we started a conversation about the OWASP Top 10 most prevalent security vulnerabilities and how relevant these issues were to a typical recruitment web site. In the 2nd part we will review the next 2 items from this list. read more...

OWASP Top 10 and your Recruitment Website - Part 1
8:30am Monday 09 August 2010
Tags: dmitry kulshitsky security recruitment website job board owasp sql injection xss cross-site scripting broken authentication session management login form design hacking website security user authentication

OWASP has recently updated their list of the top 10 most prevalent security vulnerabilities. Since this list covers all major aspects of computer security it is interesting to check what are the issues that are relevant to a typical recruitment website or job board and (exercising the 80/20 rule) what are the key questions we should ask ourselves (or our IT/security staff) to be sure that we don't miss anything critical. read more...

How secure is your Recruitment website? Part 5 - Cross-site scripting (XSS)
8:00am Tuesday 30 March 2010
Tags: cross site scripting xss insecure recruitment websites job board security how secure is your recruitment website defacement dmitry kulshitsky untrusted data

According to OWASP, cross-site scripting (XSS) flaws occur whenever an application takes untrusted data and sends it to a web browser without proper validation and escaping. XSS allows attackers to execute script in the victim’s browser which can hijack user sessions, deface web sites, or redirect the user to malicious sites. read more...

Latest Blog Articles

Next »

Silly mistakes

QR Codes in Print Job Ads

I don't care that you have more LinkedIn connections than me. You can buy them for $5

More jobs than SEEK?

Fail Whale. Phishing link love

if(candidate.experience.contains(it)) ++bonusPoints

For bonus points, apply using the API

"Attaging" with QR Codes - The security threat for mobile recruitment

SMS "Apply" to...

Typo squatting and the doppelganger domain threat

Newsletter Mailing List

Stay informed of current news, upcoming events and promotional offers.

Article Calendar

September 2012 (1)
August 2012 (1)
April 2012 (3)
February 2012 (2)
October 2011 (3)
September 2011 (1)
July 2011 (2)
June 2011 (1)
May 2011 (2)
March 2011 (3)
February 2011 (4)
January 2011 (3)
December 2010 (6)
November 2010 (7)
October 2010 (5)
September 2010 (8)
August 2010 (7)
July 2010 (8)
June 2010 (9)
May 2010 (10)
April 2010 (14)
March 2010 (13)
February 2010 (10)
January 2010 (8)
December 2009 (12)
November 2009 (14)
October 2009 (17)
September 2009 (14)
August 2009 (20)
July 2009 (21)
June 2009 (24)
May 2009 (22)
April 2009 (17)
March 2009 (33)
February 2009 (23)
January 2009 (45)

Home > Blog > Search Articles	Powered by RecruitmentZOO
Site Map \| Contact \| Privacy Policy \| Terms & Conditions
Copyright © 2007 - 2010 Recruitment Directory Pty Ltd

Key Word(s):	Search By:

Article Search Engine

Latest Blog Articles

Newsletter Mailing List

Article Calendar

Upcoming Webinars