(secure)SiteHoster : v1.0 beta RC2 and added to GitHub

(secure)SiteHoster

added it to GitHub (along-with entire Eclipse Workspace)

Repo at http://github.com/abhishekkr/sitehoster

#git clone git://github.com/abhishekkr/sitehoster.git

I’ve updated to version 1.0 beta RC2
http://sourceforge.net/projects/sitehoster/files/v1.0beta%20RC2/

here, Web-Developers will be able to add <SCRIPT/> to <BODY/> still using XSS Patch, as this requires them to feed the <SCRIPT/> for <BODY/> to <HEAD/> using the DEFER keyword as suggested by Microsoft IE for browser side usage, but the difference is here ‘SiteHoster’ will itself feed it to active region of <BODY/>

Eg. a page content like
<html>
<head><script>alert(‘head’);</script>
<script DEFER>alert(‘body’);</script></head>
<body>test</body></html>

will be converted to a content below and send to browser
<html>
<head><script>alert(‘head’);</script></head>
<BD><BODY><script>x=document.getElementsByTagName(“BODY”);
x[0].innerHTML =”test”;
<script DEFER>alert(‘body’);</script></BODY></BD></html>

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: