Skip to main content

Posts

Showing posts with the label How Angular Apps Prevent this Attack?

How Angular Preventing Cross Site Scripting (XSS) and CSRF Attacks?

How does Angular 2 handle with XSS or CSRF?  How Angular prevents this Attacks? The Cross Site Scripting (XSS) attack is a type of injection and attackers inject your web applications using the client side scripts and malicious code into web pages. An attacker can insert vulnerability scripts and malicious code in your web applications. The Angular treats all values as un-trusted by default. This is the great advantages of Angular. Stayed Informed   –  Angular 4 docs  and  Angular 5 docs When a value is Inserted Vulnerability into the DOM from – 1.      A Template 2.      Property 3.      Attribute 4.      Style 5.      Class Binding 6.      Interpolation 7.      And so on. Angular recognizes the value as unsafe and automatically sanitizes and removes the script tag and other securit...