XSS attacks could cause a serious threat to web applications based on the malicious code injected by the hackers. The XSS cheat sheet provides you a list of snippets to be used in detecting XSS vulnerabilities. OWASP Top 10 : Cross-Site Scripting #2 DOM Based XSS Injection and Mitigation. Demonstrated in this post Dom based XSS and Mitigation for the vulnerability [email protected] After reviewing what I did, I had to put my custom code in a separate function, since it was breaking some of the links of my site. I'd like to know what would be the right approach for this from the Drupal Core, since it's a security matter. Ingres SQL Injection Cheat Sheet Saturday, July 7th, 2007 Ingres seems to be one of the less common database backends for web applications, so I thought it would be worth installing it and making some notes to make my next Ingres-based web app test a little easier. Cross Site Scripting (XSS) Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted web sites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user.