8. Preventing Cross Site Scripting Vulnerabilities

• 8.1. Preventing Cross Site Scripting Vulnerabilities
  • 8.1.1. Philosophy and General Rules
  • 8.1.2. Types of Context and Escaping
  • 8.1.3. Editing Template Files
  • 8.1.4. Making Legacy Mako Templates Safe by Default
  • 8.1.5. XSS Linter
  • 8.1.6. Advanced Topics
  • 8.1.7. Additional Resources
• 8.2. Preventing XSS by Stripping HTML Tags
  • 8.2.1. Overview
  • 8.2.2. Mako filters for bleaching
  • 8.2.3. Strip all HTML tags
  • 8.2.4. Strip all but safe HTML tags
• 8.3. Preventing XSS in Django Templates
  • 8.3.1. HTML-escaping Translations in Django Templates
• 8.4. Preventing XSS in React

---

Feedback