Silverlight: Avoiding Cross-Site Scripting Attacks

Cross-site scripting (XSS) describes a vulnerability typically found in Web applications. If steps are not taken to prevent this type of vulnerability, an attacker can inject code (typically JavaScript) into Web pages hosted on different domains. For more information about XSS and other kinds of client vulnerabilities, see Client-side Cross-domain Security. For Silverlight, XSS issues are possible, but less likely than in traditional HTML development. However, an exploited cross-site scripting vulnerability can give the attacker access to any cookies, isolated storage, and authentication data that the browser would normally only give to a legitimate client.

In Silverlight, XSS issues typically occur when attacker-controlled strings are inserted into markup without first validating or escaping the attacker-controlled string. Learn More

Tags: , , , , , , | Posted under 3rd Party Software, Programming/Coding | Leave a comment

How to Add a Feedback Page in Elgg 1.8

Several of our Elgg users were looking for a way to allow site feedback in their Elgg network. This article will give a step by step guide on how to show a feedback form in Elgg 1.8

1.  Download a plugin called “Elgg 1.8: Feedback”, which can be downloaded here

2. After downloading the plugin, upload the plugin to the mod folder of your Elgg network to install it. If you don’t know how to do that, please read this article.

3. After that, please sign in as an Administration and go to the Administration Dashboard: Learn More

Tags: , , , , , , , | Posted under Elgg | Leave a comment

mojoPortal Tips: Creating a Unique “Home” Navigation Menu Link

Not too long ago, I received a request for a custom mojoPortal skin; since the site is baseball-oriented, the design incorporated a “Home Plate” for the “Home” link on the menu. I actually enjoyed working on this project very much – let’s take a look at how this was done.

Custom Home Link

Learn More

Tags: , , , , , , , | Posted under MojoPortal | Leave a comment