W3C
As part of improving its infrastructure, W3C arranged an extensive penetration test by the security consulting firm Cure53. They found several different types of vulnerabilities including SQL Injection (SQLi). The W3C Systems Team determined these were used to gain unauthorized access to its user database and to harvest encrypted passwords. Since there is potential (with […]
More…
Sam says he's Online and Airborne. "Needless to say, this is seriously cool." I'll say! But when I follow the link to details from the service provider, I get:Sorry. You must have JavaScript enabled to view this page. Click the...
More…
I could use some help getting my head around security for Web Applications and mashups. The first time someone told me W3C should be working on specs help the browser prevent sensitive data from leaking out of enterprises, I...
More…
At the news of the official release of Firefox 3 (FF3), I asked David Baron, Mozilla's Advisory Committee Representative at W3C (see photo), a few questions about the browser release and support for standards. Note: I anticipate interviewing (lots...
More…
"If you had to fix the Web... what would you do?"
More…
Widgets provide front-ends to all kinds of information sources on the Web; several thousand are available for download. Obviously, the use of Web technologies has been a huge success here, enabling people to adapt their programming experience from the Web to their local platform. With the Web programming platform, though, come the Web's programming practices and security issues, sometimes with more serious consequences than before.
More…
Copyright © 2023 World Wide Web Consortium. W3C® liability, trademark and permissive document license rules apply.