{"version":"1.0","provider_name":"Mickael FRANC (aka Pilebones)","provider_url":"https:\/\/www.mickael-franc.fr\/blog","title":"OWASP \/ Cross-Site Scripting (XSS) - Mickael FRANC (aka Pilebones)","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"WBU3iR39wq\"><a href=\"https:\/\/www.mickael-franc.fr\/blog\/owasp-cross-site-scripting-xss\/\">OWASP \/ Cross-Site Scripting (XSS)<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.mickael-franc.fr\/blog\/owasp-cross-site-scripting-xss\/embed\/#?secret=WBU3iR39wq\" width=\"600\" height=\"338\" title=\"\u00ab\u00a0OWASP \/ Cross-Site Scripting (XSS)\u00a0\u00bb &#8212; Mickael FRANC (aka Pilebones)\" data-secret=\"WBU3iR39wq\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/\/# sourceURL=https:\/\/www.mickael-franc.fr\/blog\/wp-includes\/js\/wp-embed.min.js\n\/* ]]> *\/\n<\/script>\n","description":"Dans ce deuxi\u00e8me article de la s\u00e9rie consacr\u00e9e aux failles applicatives, Mickael FRANC aborde les injections XSS au travers de l'OWASP. Vous d\u00e9couvrirez ces failles et apprendrez \u00e0 les d\u00e9tecter. Vous verrez enfin les moyens de vous en pr\u00e9munir.","thumbnail_url":"http:\/\/blog.clever-age.com\/wp-content\/uploads\/sites\/2\/2013\/09\/owasp_logo_150_150.jpg"}