Statements (23)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
Web vulnerability
|
| gptkbp:affects |
Web applications
|
| gptkbp:alsoKnownAs |
gptkb:Stored_XSS
|
| gptkbp:category |
gptkb:OWASP_Top_10
|
| gptkbp:cause |
Phishing
Defacement Session hijacking Data theft |
| gptkbp:distinctFrom |
gptkb:DOM-based_XSS
gptkb:Reflected_XSS |
| gptkbp:example |
Malicious comment stored in database
|
| gptkbp:exploits |
User input handling
|
| gptkbp:firstDescribed |
Early 2000s
|
| https://www.w3.org/2000/01/rdf-schema#label |
Persistent XSS
|
| gptkbp:prevention |
gptkb:Content_Security_Policy
Input validation Output encoding |
| gptkbp:relatedTo |
gptkb:Cross-site_scripting
Web security |
| gptkbp:requires |
Server stores malicious input
|
| gptkbp:result |
Malicious script execution
|
| gptkbp:bfsParent |
gptkb:Stored_XSS
|
| gptkbp:bfsLayer |
6
|