Security is very important for e-commerce sites. For example, websites offering cheap CD keys are very popular but a breach of customer payment data or information can easily kill the business. One of the most common security risks is cross-site scripting. Sites that are using forms, search or an administrative back end are particularly vulnerable.
There are many different types of cross-site scripting or XSS. A security breach can occur when an attacker adds code to a web page. The code will run in the browser of a user who is unaware of the threat. A web page becomes highly vulnerable to an XSS attack when user input is not removed correctly. For example, the comment form will allow someone to add HTML. The attacker uses the opportunity to post a comment that will include an attack code.
Many code libraries and ecommerce platforms actually perform this task by default. However, input sanitizing will limit what a user can enter. A user can be restricted from bolding certain words on the blog comment or link it to another page.
Online comparison tools allow people to find cheap CD keys for games like World of Warcraft. However, adults must always show interest on the cheap games that their children are accessing on the web. There must be no realistic violence or fantasy worlds that have little to do with a normal environment.