Learn about the flaws of HTML5 and the recommended security measures that could be taken to minimize the impact of HTML5 vulnerabilities.
HTML5 has gained a lot of popularity because it allows web application developers to build more interactive websites thanks to a number of new features. However, new features also mean new vulnerabilities. This paper analyzes most of the features introduced in HTML5 along with the vulnerabilities each feature introduces.
Cross Site Scripting is a major highlight in this paper and could be classified as the number one flaw used for exploiting HTML5 features due to developers heavily storing sensitive data on the client side. We have discussed features such as WebStorage, WebSQL, Geolocation API, CORS, Cross Window Messaging, sandboxed iframes, webworkers, etc. and corresponding vulnerabilities that could be introduced when they are used unsafely.
With this free guide you will also receive the Rafay Hacking Articles newsletter.