XSS attacks

GPTKB entity

Statements (32)
Predicate Object
gptkbp:instanceOf cybersecurity vulnerability
gptkbp:affects web applications
gptkbp:canBeBypassedBy gptkb:same-origin_policy
gptkbp:cause phishing
malware distribution
data theft
website defacement
session hijacking
gptkbp:detects penetration testing
web application scanners
gptkbp:exploits input validation flaws
gptkbp:firstDescribed 2000
gptkbp:fullName Cross-Site Scripting attacks
https://www.w3.org/2000/01/rdf-schema#label XSS attacks
gptkbp:language gptkb:HTML
gptkb:JavaScript
gptkb:Flash
gptkb:VBScript
gptkbp:listedOn gptkb:OWASP_Top_Ten
gptkbp:mitigatedBy secure coding practices
gptkbp:prevented_by gptkb:Content_Security_Policy
input sanitization
output encoding
gptkbp:target web browsers
users
web servers
gptkbp:type gptkb:DOM-based_XSS
gptkb:reflected_XSS
stored XSS
gptkbp:uses malicious scripts
gptkbp:bfsParent gptkb:CSRF_attacks
gptkbp:bfsLayer 6