|
|
|
|
|
|
by nl
1324 days ago
|
|
|
Sure, redefine the terms if you like. The thing that accepts the input must make sure it is properly escaped. Think of SQL injection attacks - they are because the thing that accepts input hasn't properly escaped the input. Cross site scripting attacks are exactly the same thing but occur when the input side doesn't properly escape HTML input. |
|
|