May 26, 2018

Perl extension to avoid XSS with JavaScript value interpolation

There are a lot of XSS, a security hole typically found in web applications, caused by incorrect or lack of JavaScript escaping. This module is aimed to provide a secure JavaScript escaping to avoid XSS with JavaScript values.

The escaping routine JavaScriptValueEscape provides escapes q!”!, q!’!, q!&!, q!=!, q!-!, q!+!, q!;!, q!<!, q!>!, q!/!, q!! and control characters to JavaScript unicode entities like “\u0026”.

WWW http//