Escaping “<” and “>” in Attributes—How It Helps Protect Against Mutation XSS sec )Jun 12, 2025 18 html , attributes , security , escaping , chrome , google , browsers HTML Spec Change: Escaping “<” and “>” in Attributes sec /dev )Jun 12, 2025 17 html , attributes , escaping , security How to Protect Your Web Applications From XSS tor /w3c )Mar 6, 2025 16 how-tos , web-apps , security Top 4 Web Vulnerabilities With Example and Mitigation Oct 21, 2024 15 security , vulnerabilities , sql , databases , csrf Frontend Application Security: Tips and Tricks Feb 16, 2024 14 web-apps , security , csrf , authentication , dependencies , csp , validation , tips-and-tricks Understanding XSS Attacks Oct 5, 2023 13 security 7 Required Steps to Secure Your Iframes Security Jan 4, 2023 12 iframes , security , html , http-headers , csp It’s Beginning to Look a Lot Like XSSmas 24w )Dec 17, 2018 11 security , vulnerabilities , csrf Building Secure JavaScript Applications Jan 18, 2018 10 javascript , security , csrf , json-web-tokens , passwords mXSS gaz )May 6, 2014 9 html , security Brad Hill: “HTML5 Security Realities” chr /css )Feb 22, 2013 8 slides , security , html Cross-Site Scripting Attacks (XSS) Apr 30, 2012 7 security , examples What Is Cross Site Scripting or XSS? chr /css )Nov 19, 2010 6 javascript , security , concepts Cookies and Security nza )May 12, 2009 5 cookies , security , csrf Simon Willison, @Media Ajax mic /aja )Sep 16, 2008 4 ajax , csrf , javascript , json , security Cross Site Scripting Joy tri )Dec 4, 2007 3 security Prepare for Attack—Making Your Web Applications More Secure Jan 16, 2007 2 web-apps , security , sql , examples DIY Widgets—How to Embed Your Site on Another Site Nov 21, 2006 1 how-tos , embed-code , javascript 