tag:blogger.com,1999:blog-1025468663370994513.post9027571782612999341..comments2023-04-30T01:11:44.068-07:00Comments on Nir Goldshlager Web Application Security Blog: swfupload.swf XSSUnknownnoreply@blogger.comBlogger3125tag:blogger.com,1999:blog-1025468663370994513.post-54123990178915194752012-12-27T14:10:23.154-08:002012-12-27T14:10:23.154-08:00Use Regex (Client Side), Block malicious input,
F...Use Regex (Client Side), Block malicious input,<br /><br />For example:<br /><br /> <,>, etc...<br /><br /><br />:)<br /><br />Nir Goldshlagerhttps://www.blogger.com/profile/05298271702219810586noreply@blogger.comtag:blogger.com,1999:blog-1025468663370994513.post-8257014131941518062012-12-27T09:48:16.785-08:002012-12-27T09:48:16.785-08:00How would you go about fixing this?
I don't s...How would you go about fixing this?<br /><br />I don't see that AS3 provides a way to not render HTML in a textField. In AS2 there was a .html configuration boolean property, but it seems to have disappeared. I had hoped assigning to .text would do it, but no luck.Buckhttps://www.blogger.com/profile/14381479492212729903noreply@blogger.comtag:blogger.com,1999:blog-1025468663370994513.post-34657988763265352212012-12-10T01:31:13.192-08:002012-12-10T01:31:13.192-08:00Nice one!Nice one!VariousEhttps://www.blogger.com/profile/06219036142575361900noreply@blogger.com