Server-side defence of cross site scripting attacks

The target of a cross site scripting attack is the browser of the internet user.
For example: an user wants to buy something in an online-shop. Therefore he has to enter his login-data in the provided box or window. What he doesn't know: the window was infiltrated into the user's browser and manipulated by the attacker. A vulnerability in the source code of the online-shop made this possible. So, the entered data won't be passed on to the online-shop, but directly to the attacker. This way the data thief can easily shop under the victim's name and at the victim's expenses.

The user is virtually powerless against a cross site scripting attack since the infiltrated script is often difficult to identify. However, the online-shop could easily prevent itself from cross site scripting attacks with the software of art of defence.

Please contact us for more information:

Tel.: +49 (0) 941 604 889 78
E-Mail: This e-mail address is being protected from spam bots, you need JavaScript enabled to view it