Posts in Topic: css

October 30, 2013 CSS

Executing JavaScript inside CSS - Another reason to whitelist and encode user input

Web application security's had a lot of coverage in recent times with a lot of attention paid to approaches to dealing with user generated content or exposing form or query string data to users. Thanks to a number of big hacks over the years you commonly hear about the risks of not properly encoding user data and the risk it poses to your visitors. One thing you don't hear often is how user entered CSS can have just as much risk attached to it – thanks to accidental support for HTML Components (HTC's).

Comments Read more
July 19, 2010 CSS

Css3 pie lets you add CSS 3 support to IE 6 - 8

A lot of great open source projects have come along to help developers who, like me, have to offer backwards support to Internet Explorer 6 through to 8. CSS3 Pie is a pretty cool new project by Jason Johnston from 321 Creative. Want to support a lot of the great new CSS3 additions in Internet Explorer? Looks like there’s an alternative.

Comments Read more