OWASP stands for the Open Web Application Security Project. It is a non-profit organization dedicated to improving the security of software and web applications. OWASP provides resources, tools, and guidance to help organizations and individuals understand and mitigate the risks associated with web application security. The mission of OWASP is to make software security visible, so that individuals and organizations can make informed decisions about their application security needs. OWASP operates as a global community-driven organization, with a vast network of volunteers who contribute to various projects, initiatives, and events. (more…)

Cross-Site Scripting (XSS) is the method of code injection whereby a malicious user injects code (html, javascript) which would get executed from the site on the users browser. When Google finds this, it will show up a warning message in its search results if the users had searched for a specific term for which your site is indexed. This can harm your user base. XSS attacks are classified as - Persistent attacks - Non-persistent attacks (more…)

Cross site scripting XSS is a term used to refer attacks or loop holes present in the scripting used by websites favoring hackers to exploit this path towards identity theft or phishing. In PHP, two functions are mainly used to circumvent XSS attacks. i) htmlspecialchars ii) htmlentities (more…)