What's hot ? (and I mean really ...) - scroll down for more
1).  Code Templating - advanced usage of delegates & generics: my slides & demos are available for download! CodeProject article is also available.

2).  My series "TDD in the eyes of a simpleminded" is in progress(including code!): preface, part1, part2, Q&A 1, Manual Stub .vs. Mock Stub

3).  TDD Workshop: SeeCompass v0.1 and v0.2 are out.
# Sunday, August 21, 2005
# The Markowitz HACKED the(my) system !

Did I mention that I'm working with a well known hacker ?
Well, It's about time, so I present to you - Amir Markowitz aka "The Hacker".

Amir taught me today how to send javascript commands directly through the address bar !
Look at the "damage" he did to my site !

redbackground1.gif

As you can see, he managed to change the background color in one simple command.

Think about changing Page_IsValid property or performing __doPostBack("","") through the address bar -

javascript:void(Page_IsValid=true); __doPostBack("","");

This could be deadly if you don't perform Server-side validation as well !

 

 

JavaScript
Posted by Oren Ellenbogen 
21/08/2005 12:35, Israel time UTC+03:00,     Comments [0]  |  Related posts:
ClientSideExtender, version 0.0.0.1
Creating a decent API for client side script registration
Roee Daliyot makes the web a little easier and a lot more yummy!
DropDownList in a popup window behavior
How to refresh a Modal Dialog window
Changing Microsoft's TabStrip disabled property via javascript.
Comments are closed.