osCommerce and osCMax shopping cart software forums

Shopping Cart Software

osCommerce with teeth!

 
 

ANTI Cross Site Scripting attacks

This is a discussion on ANTI Cross Site Scripting attacks within the New osCommerce Contributions forums, part of the osCommerce 2.2 Forums category; I take no credit for this contribution, this is based upon the anti-xss contribution by "pixclinic" with extra sql injection ...


Go Back   osCommerce and osCMax shopping cart software forums > osCommerce 2.2 Forums > New osCommerce Contributions

ANTI Cross Site Scripting attacks ANTI Cross Site Scripting attacks

Register FAQ Members List Calendar Mark Forums Read


Free community membership! Fast easy FREE membership
Reply

 

LinkBack Thread Tools
  #1  
Old 07-19-2008, 03:13 PM
michael_s's Avatar
osCMax Developer

  
Join Date: Jul 2002
Location: Phoenix, AZ
Posts: 10,505
Thanks: 74
Thanked 334 Times in 313 Posts
Rep Power: 10
michael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond reputemichael_s has a reputation beyond repute
Post ANTI Cross Site Scripting attacks
I take no credit for this contribution, this is based upon the anti-xss contribution by "pixclinic" with extra sql injection protection I found elsewhere on the web.

All I have added is the extra code and logging capability.

This will basically send any hacker to log.php which will display a message that his/her IP has been logged - this is stored in a file called iplog.txt in catalog root.


3 Easy Steps.


After install head off to http://www.ncircle.com/index.php?s=p...iance#freescan to get your free pci compliance scan!

To be even safer also consider installing FWR Media's Security Pro Contribution from http://addons.oscommerce.com/info/5752




More...
__________________
Michael Sasek
osCMax Developer

  • osCMax Templates - Hundreds of premium quality templates. New designs every month!

  • xShop for osCMax - Windows Based osCMax administration. Improved workflow, security, speed and convenience.

  • osCMax Hosting - From basic hosting to High Availability, Load Balanced arrays, the most experienced osCMax host.

  • osCMax Template Tutorial - Learn how to make your own custom templates and how to use the powerful features of the osCMax template system.
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Sponsored Links
Advertisement
Reply

« Friendly Pricing | Protection of Configuration »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads

Thread Thread Starter Forum Replies Last Post
ANTI Cross Site Scripting attacks michael_s New osCommerce Contributions 0 06-26-2008 07:20 PM
ANTI Cross Site Scripting attacks michael_s New osCommerce Contributions 0 06-26-2008 09:12 AM
ANTI Cross Site Scripting attacks michael_s New osCommerce Contributions 0 06-26-2008 03:30 AM
ScanAlert Cross site scripting XSS - Alleged Level 2 (of 5) kenlyle osCMax v2 Features Discussion 0 07-20-2006 05:59 AM


All times are GMT -8. The time now is 07:54 AM.

osCMax Home - Site Map - Top

Powered by vBulletin®
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
SEO by vBSEO
http://www.oscmax.com/forums/
Copyright 2008 osCMax