Technology Insights

Double Encoding – One Of The Biggest Enemies While Fixing Cross-Site Scripting (XSS)

“You have X amount of Cross-Site Scripting vulnerabilities”. That is a phrase most web developers have heard at least one time, what is a Cross-Site Scripting vulnerability? OWASP defines Cross-Site Scripting as: “Cross-Site Scripting attacks are a type of injection problem, in which malicious scripts are injected into the otherwise benign and trusted web sites. Cross-site…

Technology Insights

Disable Geo Tagging on the HTC Evo

I recently learned that most common smart phones do something called geotagging. As people who regularly follow this site will know I have recently been doing a lot of work with a new HTC Evo so I was really interested in this. Geotagging, also called geocoding, is the process of assigning geographic location metadata to…