| Popis: |
This paper discusses the implementation of the Escaping Technique in an Online Inventory System to prevent the Cross Site Scripting (XSS) attack. It also covers discussion about XSS described as a kind of injection attack that injects malicious scripts in the web application. This study also discusses the different types of XSS attacks citing some related studies which provide additional necessary information. Furthermore, a discussion of preventive measures to address the vulnerabilities of XSS attack is also covered in this study. Likewise, the escaping process is able to secure the developed online inventory system against XSS attack. Stripping out unwanted data, like malformed HTML or script tags prevents this data from being seen as code. The implementation of this technique is to be seen in an online inventory system. All of the possible situations were analyzed and imbedded on the developed online inventory system. Thus, it is very vital to secure the confidentiality, availability and integrity of the data inside the system and to mitigate the vulnerability to spread widely. |
