Cross Site Scripting and SQL injection explained

OWASP has a full range of videos that give you a basic view of XSS and SQL injection:

SQL injection

Full table and column traversal and site take-over is almost an inevitable consequence of non-managed user input and system output (like error messages). This OWASP video gives you a quick introduction.

Cross Site Scripting (XSS)

Easy to exploit, easy to find, highly varied – script injection in Javascript, typically to attack other users and exploit them.

You can find out more in the AppSec Tutorial Series by OWASP

Contact us

Drop us an email now

Did you know?

synch.cc manages and backs up multiple hundreds of terabytes each month.

News

IT consulting, management and managed services

synch.cc's product offering has increased again, in line with our focus on secure network communications. As your...

Read the full story

From our team

Sven Welzel

Not even traffic jams can be trusted anymore... #itsec t.co/Fi661k8iWi Time ago 44 Days via Twitter for Android
RT @troyhunt: This is the best practical, consumer-centric explanation I’ve seen about the challenges people have with passwords. It also c… Time ago 51 Days via Twitter for Android
RT @s7ephen: Tech-savvy millenials click the link with zealous anticipation... "what a clever hack!" they exclaim as they tweet and reshare… Time ago 68 Days via Twitter for Android
RT @ilfak: We released IDA Freeware 7.0 for Windows/Linux/Mac: t.co/EkzQyseIBp Time ago 77 Days via Twitter for Android
RT @e_kaspersky: Sprawling mobile espionage campaign targets #Android devices t.co/BNNgBRly3B t.co/Ev21TmcbeX Time ago 90 Days via Twitter for Android

Follow @svenwelzel on twitter.

Follow him at:
@SvenWelzel

Follow synch.cc Consulting at:
@synchcc