cross-site scripting (XSS)
GPTKB entity
Properties (18)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:Company
|
| gptkbp:allows |
session hijacking
|
| gptkbp:controls |
gptkb:Content_Security_Policy_(CSP)
input validation output encoding |
| gptkbp:designatedAs |
stored XSS
DOM-based_XSS reflected_XSS |
| gptkbp:features |
web application vulnerability
|
| https://www.w3.org/2000/01/rdf-schema#label |
cross-site scripting (XSS)
|
| gptkbp:impact |
web applications
user sessions |
| gptkbp:is_a |
code injection attack
|
| gptkbp:is_used_in |
inject malicious scripts
malicious URLs |
| gptkbp:leads |
data theft
|
| gptkbp:type |
security exploit
|
| gptkbp:visitedBy |
security scanners
|