Statements (33)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:cybersecurity_vulnerability
|
| gptkbp:affects |
web applications
|
| gptkbp:canBeBypassedBy |
gptkb:same-origin_policy
|
| gptkbp:cause |
phishing
malware distribution data theft website defacement session hijacking |
| gptkbp:detects |
penetration testing
web application scanners |
| gptkbp:exploits |
input validation flaws
|
| gptkbp:firstDescribed |
2000
|
| gptkbp:fullName |
Cross-Site Scripting attacks
|
| gptkbp:language |
gptkb:HTML
gptkb:JavaScript gptkb:Flash gptkb:VBScript |
| gptkbp:listedOn |
gptkb:OWASP_Top_Ten
|
| gptkbp:mitigatedBy |
secure coding practices
|
| gptkbp:prevented_by |
gptkb:Content_Security_Policy
input sanitization output encoding |
| gptkbp:target |
web browsers
users web servers |
| gptkbp:type |
gptkb:DOM-based_XSS
gptkb:reflected_XSS stored XSS |
| gptkbp:uses |
malicious scripts
|
| gptkbp:bfsParent |
gptkb:window.localStorage
gptkb:CSRF_attacks |
| gptkbp:bfsLayer |
7
|
| https://www.w3.org/2000/01/rdf-schema#label |
XSS attacks
|