CarlsCloud™ Answers to the Start small "Spot the Flaw" Challenge

The Problem: The code directly takes user input (name, feedback) and uses it within the JavaScript string sent to the server. There's no input sanitization or encoding.

5 months ago   •   1 min read

By Carl Ballenger, CISSP
Table of contents

This content is only available to subscribers

Subscribe now and have access to all our stories, enjoy exclusive content and stay up to date with constant updates.

Sign up now

Spread the word

Keep reading