+ 1
Get data with Ajax is unsecure?
Hello guys, i am using ajax to get data in my website. Is my website not fully protected against attack or other criminal activity???
2 Answers
+ 7
No! Never!âŠâŠâŠ (only back-end is protectedâŠ)
+ 2
The question is not related to WHAT you use but HOW YOU USE IT.
Below are two links to info about best practices to avoid XSS (cross site scripting) that is a common JS vulnerability.
https://www.owasp.org/index.php/XSS_(Cross_Site_Scripting)_Prevention_Cheat_Sheet
https://www.google.com/about/appsecurity/learning/xss/
If you're even more paranoid you can look at security best practices involving database access.