codemapoest. 2024

BlogBLOG RoadmapROADMAP UtilityUTILITY ProjectsPROJECTS AboutABOUT

© codemapo · est. 2024

All rights reserved.

#XSS

3 posts tagged

DateCoordTitleTags

2026.04.02Y·13

CSP (Content Security Policy): The Header That Blocks XSS at the Source

CSP is the last line of defense that stops XSS scripts from executing even if injected. Directive syntax, nonce approach, Next.js config, and a safe rollout strategy — all covered.

CSPContent Security PolicyXSS

→2026.04.01Y·12

OWASP Top 10 (2025): Complete Web Security Threats Overview

From injection and broken auth to XSS and the newest threats — OWASP Top 10 broken down with real code examples and practical mitigations for each vulnerability.

OWASPWeb SecurityXSS

→2025.07.14Y·05

The Culprit Who Stole My Cookies Was a Comment (XSS Defense Guide)

My admin account was hijacked because of a single comment on the board. I dive deep into the 3 types of XSS (Stored, Reflected, DOM) and concrete defense strategies in React/Next.js environments, including HTML Escaping, CSP, and Cookie Security.

SecurityXSSWeb Development

▸ Other tags

#CS164 #Performance60 #React55 #Security52 #DevOps46 #Architecture42 #Frontend36 #Web35 #OS33 #Network32 #Backend31 #Debugging29 #hardware29 #Next.js29 #Database28 #Flutter28 #TypeScript24 #Algorithm23 #AI22 #Mobile22 #Optimization22 #JavaScript21 #Infrastructure19 #System Design19

Browse all tags →