Skip to content

InputValidation

Jump to bottom
Razvan Deaconescu edited this page Jun 2, 2019 · 2 revisions

Input Validation

https://wiki.sei.cmu.edu/confluence/display/java/IDS00-J.+Prevent+SQL+injection https://bitbucket.org/xerial/sqlite-jdbc/downloads java -cp .:sqlite-jdbc-3.27.2.1.jar SQLiteJDBC a "b' or '1'='1"

https://wiki.sei.cmu.edu/confluence/display/java/IDS16-J.+Prevent+XML+Injection https://www.mkyong.com/java/how-to-read-xml-file-in-java-dom-parser/

https://en.wikipedia.org/wiki/Billion_laughs_attack

https://stackoverflow.com/questions/26488319/how-to-prevent-xml-injection-like-xml-bomb-and-xxe-attack

https://gist.github.com/mgeeky/4f726d3b374f0a34267d4f19c9004870 https://stackoverflow.com/questions/40649152/how-to-prevent-xxe-attack

https://wiki.sei.cmu.edu/confluence/display/java/IDS06-J.+Exclude+unsanitized+user+input+from+format+strings

Clone this wiki locally