It's very common for Hello World example apps in textbooks or other educational literature to promote insecure software building practices right out of the gate. What a breath of fresh air to see the Microsoft MVC folks safely HTML encoding (to avoid XSS) in their MVC4 Hello World application!
No comments:
Post a Comment