Cross-Site Scripting

URI: https://gptkb.org/entity/Cross-Site_Scripting

GPTKB entity

Predicate	Object
gptkbp:instanceOf	gptkb:Web_security_vulnerability
gptkbp:abbreviation	gptkb:XSS
gptkbp:affects	Web applications
gptkbp:can_be_exploited_by	Attackers Malicious users
gptkbp:cause	Malware distribution Phishing Defacement Session hijacking Data theft
gptkbp:detects	Web application scanners
gptkbp:exploits	User input validation flaws
gptkbp:firstDescribed	2000
gptkbp:impact	Availability breach Confidentiality breach Integrity breach
gptkbp:listedOn	gptkb:OWASP_Top_Ten
gptkbp:mitigatedBy	Web application firewalls
gptkbp:prevention	gptkb:Content_Security_Policy Output encoding Input sanitization Secure coding practices Framework security features
gptkbp:relatedTo	gptkb:Cross-Site_Request_Forgery gptkb:SQL_Injection
gptkbp:target	Web browsers
gptkbp:type	gptkb:DOM-based_XSS gptkb:Reflected_XSS gptkb:Stored_XSS
gptkbp:uses	Malicious scripts
gptkbp:bfsParent	gptkb:XSS
gptkbp:bfsLayer	7
https://www.w3.org/2000/01/rdf-schema#label	Cross-Site Scripting