Y
Hacker News
new
|
ask
|
show
|
jobs
by
enraged_camel
3607 days ago
Yeah, somewhat. However, despite frameworks like Node, JavaScript is a client-side language. So even if you fuck up horribly with it, the damage you cause will be minimal. Not so with PHP.
1 comments
lima
3606 days ago
JavaScript is commonly used for writing server software or even systems software nowadays.
Also, an exploitable XSS in your web application can be just as damaging as a server compromise.
link
enraged_camel
3606 days ago
Can XSS be used to drop your Users table?
link
Also, an exploitable XSS in your web application can be just as damaging as a server compromise.