Web application access user’s file system

by

Finally I did a compilation of some quotations and it is done..

https://en.wikipedia.org/wiki/JavaScript#Security

scripts run in a sandbox in which they can only perform Web-related
actions, not general-purpose programming tasks like creating files

https://www.us-cert.gov/publications/securing-your-web-browser

JavaScript, also known as ECMAScript, is a scripting language that is used to make websites more interactive. There are specifications in the JavaScript standard that restrict certain features such as accessing local files.

https://developer.mozilla.org/en-US/docs/Web/API/File_System_API/Introduction#restrictions

Because the file system is sandboxed, a web app cannot access another app’s files. You also cannot read or write files to an arbitrary folder (for example, My Pictures and My Documents) on the user’s hard drive.

More Related Contents:

  1. WordPress or building site on own? Which is more cost efficient?
  2. jQuery .animate function not responding properly
  3. How to secure javascript code from being run on other domain (stolen) ? need more ideas
  4. Can we protect against SQL-injection by writing Javascript code correctly? how? [closed]
  5. how can i extract text and image in PDF file using php or javascript [closed]
  6. Why is using the JavaScript eval function a bad idea?
  7. SecurityError: Blocked a frame with origin from accessing a cross-origin frame
  8. AngularJS changes URLs to “unsafe:” in extension page
  9. How to prevent your JavaScript code from being stolen, copied, and viewed? [closed]
  10. How to make ng-bind-html compile angularjs code
  11. Where to save a JWT in a browser-based application and how to use it
  12. How can I make the browser wait to display the page until it’s fully loaded?
  13. Why do people put code like “throw 1; ” and “for(;;);” in front of json responses? [duplicate]
  14. Unsafe JavaScript attempt to access frame in Google Chrome
  15. how to make sure only my own website (clientside code) can talk to Firebase backend?
  16. Creating common controller functions
  17. Secure distribution of NodeJS applications
  18. What are the AES parameters used and steps performed internally by crypto-js while encrypting a message with a password?
  19. Security Issues for allowing users to add own JavaScript to your site?
  20. How to prevent html/JavaScript code modification
  21. Allow All Content Security Policy?
  22. One big javascript file or multiple smaller files? [duplicate]
  23. Resize external website content to fit iFrame width
  24. Why does Google prepend while(1); to their JSON responses?
  25. Convert a string to base64 in JavaScript. btoa and atob are deprecated
  26. Disable drop paste in HTML input fields? [duplicate]
  27. How to send secure AJAX requests with PHP and jQuery
  28. What makes an input vulnerable to XSS?
  29. Get height of iframe with external URL
  30. Embedding youtube video “Refused to display document because display forbidden by X-Frame-Options”

Leave a Comment