reflected XSS

GPTKB entity

Statements (22)
Predicate Object
gptkbp:instanceOf gptkb:security
gptkbp:affects web applications
gptkbp:alsoKnownAs non-persistent XSS
gptkbp:cause phishing attacks
malware distribution
session hijacking
gptkbp:describedBy gptkb:OWASP_Top_Ten
gptkbp:detects web vulnerability scanners
gptkbp:distinctFrom gptkb:DOM-based_XSS
stored XSS
gptkbp:exploits malicious scripts
input validation flaws
gptkbp:firstDescribed early 2000s
https://www.w3.org/2000/01/rdf-schema#label reflected XSS
gptkbp:mitigatedBy gptkb:Content_Security_Policy
input sanitization
output encoding
gptkbp:occurredIn user input is immediately returned in response without proper sanitization
gptkbp:requires user interaction
gptkbp:target end users
gptkbp:bfsParent gptkb:cross-site_scripting
gptkbp:bfsLayer 5