HTML Spec Change: Escaping “<” and “>” in Attributes (sec /dev )Jun 12, 2025 13 html , attributes , escaping , security Escaping “<” and “>” in Attributes—How It Helps Protect Against Mutation XSS (sec )Jun 12, 2025 12 html , attributes , security , escaping , chrome , google , browsers How to Protect Your Web Applications From XSS (tor /w3c )Mar 6, 2025 11 how-tos , web-apps , security Top 4 Web Vulnerabilities With Example and Mitigation Oct 21, 2024 10 security , vulnerabilities , sql , databases , csrf Frontend Application Security: Tips and Tricks Feb 16, 2024 9 web-apps , security , csrf , authentication , dependencies , csp , validation , tips-and-tricks Understanding XSS Attacks (ver )Oct 5, 2023 8 security 7 Required Steps to Secure Your Iframes Security Jan 4, 2023 7 iframes , security , html , http-headers , csp It’s Beginning to Look a Lot Like XSSmas (24w )Dec 17, 2018 6 security , vulnerabilities , csrf Building Secure JavaScript Applications Jan 18, 2018 5 javascript , security , csrf , json-web-tokens , passwords Brad Hill: “HTML5 Security Realities” (chr /css )Feb 22, 2013 4 slides , security , html Cross-Site Scripting Attacks (XSS) Apr 30, 2012 3 security , examples What Is Cross Site Scripting or XSS? (chr /css )Nov 19, 2010 2 javascript , security , concepts Simon Willison, @Media Ajax (mic /aja )Sep 16, 2008 1 ajax , csrf , javascript , json , security