Greasemonkey Hacks: Trace XMLHttpRequest Activity
White Papers XMLHttpRequest is a JavaScript technique that enables a page to interact with the server without having to reload the entire page. This nonstandard API was first developed by Microsoft for Internet Explorer, but it was later picked up and...
[October 10, 2007, 1:00]
Bug fixes and OS X boost bring Opera up to speed
News The fixed flaws include an XMLHttpRequest redirect vulnerability and two cross-site scripting bugs, all of which could let an attacker access a victim's files or fake a trusted Web site, according to Secunia.
[June 20, 2005, 11:25]
Netscape flaw exposes users' hard drives
News GreyMagic Software on Monday reported that the problem affects XMLHttpRequest, which allows Web pages in the browser to send and receive XML data via HTTP, the standard Web transfer protocol. According to the report, verified by other developers...
[May 1, 2002, 11:29]
Securing Ajax Applications: Protecting the Server
White Papers After all, what good is the XMLHttpRequest object without a web server to talk to on the backend. Ajax applications require a web server to work. So, Ajax Security starts with the web server. If the web server is not secure, neither is the...
[October 17, 2007, 1:00]
Ajax Hacks: Detect Browser Compatibility With the Request Object
White Papers In the world of Firefox and Netscape (as well as Safari and Opera), this object is named XMLHttpRequest. Browser compatibility is an important consideration. One has to make sure the "Engine" behind Ajax's server handshake is properly constructed...
[August 25, 2009, 10:14]
Dynamically Generate a Selection List in a Rails Template
White Papers A Rails application wraps all of the XMLHttpRequest mechanics behind its own methods. This hack creates a select element from server-side data using a Ruby on Rails application. Unlike the typical manner in which a web widget is generated in a web...
[October 10, 2007, 1:00]
Fresh IE flaw report probed
News Internet Explorer does not validate some data fields provided when XmlHttpRequest is used, he wrote. A new flaw in Internet Explorer could be exploited to launch spoof-based attacks, or access and change data on vulnerable machines, security...
[September 29, 2005, 9:00]
Google's offline web apps click into gear
News One of the key capabilities of Ajax development — XMLHttpRequest — came out in 1998 and took years to catch on, in part because of applications such as Google Maps. Google engineers have enabled what internet surfers for years have yearned for...
[May 31, 2007, 8:26]
