Introduction to OWASP Top Security Risk Cross-Site Scripting (XSS)

Presented by

John Wagnon, Devcentral, F5

About this talk

Lightboard Lessons: Episode 2: (12 min): The OWASP Top 10 is a list of the most common security risks on the Internet today. Cross Site Scripting (XSS) comes in at the #7 spot in the latest edition of the OWASP Top 10. XSS flaws occur whenever an application takes untrusted data and sends it to a web browser without proper validation or escaping. XSS allows attackers to execute scripts in the victim’s browser which can hijack user sessions, deface web sites, or redirect the user to malicious sites. In this video, we discuss how Cross Site Scripting works and outline some mitigation steps to make sure your web application stays secure against this threat. By watching this video, your personal details will be shared with F5 and treated in accordance with the F5 Privacy Notice (https://www.f5.com/company/policies/privacy-notice). You also are signing up to be contacted about F5 products and services but you can unsubscribe at any time.

Related topics:

More from this channel

Upcoming talks (5)
On-demand talks (179)
Subscribers (6702)
At F5, our mission is based on the fact that businesses depend on apps. Our long-standing belief that applications are the most valuable assets of any organization in the digital age has been the foundation of our strategy to become the leader in multi-cloud application services. When you combine F5 and NGINX's expertise powering over half of the world's applications across all types of environments, with Shape's insight from mitigating 1 billion application attacks per day, you have a company that knows how to deliver and secure more applications, and more value, than any company in the industry. This means that we are able to deliver and protect applications—revenue generating, brand-anchoring applications—from the point at which they are created through to the point where consumers interact with them. In other words, from "code to customer." This makes the combined forces of F5, NGINX, and Shape absolutely essential to every digital organization in the world, including the world's largest enterprises, service providers, financial and educational institutions, government entities, and consumer brands. Visit F5 at: https://www.f5.com/company