Statements (32)
Predicate | Object |
---|---|
gptkbp:instanceOf |
cybersecurity vulnerability
|
gptkbp:affects |
web applications
|
gptkbp:canBeBypassedBy |
gptkb:same-origin_policy
|
gptkbp:cause |
phishing
malware distribution data theft website defacement session hijacking |
gptkbp:detects |
penetration testing
web application scanners |
gptkbp:exploits |
input validation flaws
|
gptkbp:firstDescribed |
2000
|
gptkbp:fullName |
Cross-Site Scripting attacks
|
https://www.w3.org/2000/01/rdf-schema#label |
XSS attacks
|
gptkbp:language |
gptkb:HTML
gptkb:JavaScript gptkb:Flash gptkb:VBScript |
gptkbp:listedOn |
gptkb:OWASP_Top_Ten
|
gptkbp:mitigatedBy |
secure coding practices
|
gptkbp:prevented_by |
gptkb:Content_Security_Policy
input sanitization output encoding |
gptkbp:target |
web browsers
users web servers |
gptkbp:type |
gptkb:DOM-based_XSS
gptkb:reflected_XSS stored XSS |
gptkbp:uses |
malicious scripts
|
gptkbp:bfsParent |
gptkb:CSRF_attacks
|
gptkbp:bfsLayer |
6
|