The Web Application Hacker’s Handbook Discovering and Exploiting Security Flaws

the server will stop processing the form when it identifies the first invalid

Download 5,76 Mb.

Pdf ko'rish

bet	195/875
Sana	01.01.2022
Hajmi	5,76 Mb.
	#293004

1 ... 191 192 193 194 195 196 197 198 ... 875

Bog'liq
3794 1008 4334

the server will stop processing the form when it identifies the first invalid

field, and so your testing is not reaching all possible code paths within

the application.

N OT E

Client-side JavaScript routines to validate user input are extremely

common in web applications but do not infer that every such application is

vulnerable. The application is exposed only if client-side validation is not

replicated on the server, and even then only if crafted input that circumvents

client-side validation can be used to cause some undesirable behavior by the

application.

Chapter 5

■

Bypassing Client-Side Controls

109

70779c05.qxd:WileyRed 9/16/07 5:14 PM Page 109

Download 5,76 Mb.

Do'stlaringiz bilan baham:

1 ... 191 192 193 194 195 196 197 198 ... 875