user3649344
Reputation:
Using Javascript for redirecting is true or not?
I have a base page in asp.net. In this page if there is a problem authentication, it automatically redirects to login page with this code:
response.write("<script>window.open('" & LoginPage & "','_parent');</script>");
Does this have a security problem? I mean using javascript for redirecting to another page has a security problem or not?
Upvotes: 1
Views: 50
Answers (1)
Hapet74
Reputation: 36
As a general rule, anything that hasn't been sanitized from user input poses a threat. if LoginPage variable comes from user input, then it can indeed be a security problem, if not handled correctly... otherwise no.
This question has some useful replies Good way to sanitize input in classic asp
In addition.. JavaScript is client-side, meaning it has no effect on your server, only the client.
Upvotes: 1
Related Questions
- Redirect with HTML vs JavaScript
- Redirecting to an aspx.page using javascript
- Javascript redirect impact on SEO
- How safe is redirect via javascript?
- How do I do a Javascript Redirect in asp.net
- Theoretical - JavaScript link redirection security issue
- Redirect from JavaScript
- is it safe to use javascript redirects?
- Redirecting in ASP.NET MVC using Javascript or something else the best way?
- Javascript based redirect: will it hurt SEO?