Wiki

User Tools

Site Tools

Trace: find_largest_and_smallest_directories encode_video_as_x265_hevc_10bit access_squid_log_files_via_ssh check_if_a_nvidia_gpu_is_found dkim_domain_keys_identified_mail use_pfsense_as_an_openvpn_client view_logs_since_the_current_boot drop_user configure_apache install_dokuwiki
security:xss_cross-site_scripting

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
security:xss_cross-site_scripting [2020/04/15 08:44] – created petersecurity:xss_cross-site_scripting [2020/07/15 09:30] (current) – external edit 127.0.0.1
Line 13: Line 13:
 Because it thinks the script came from a trusted source, the malicious script can access any cookies, session tokens, or other sensitive information retained by the browser and used with that site. Because it thinks the script came from a trusted source, the malicious script can access any cookies, session tokens, or other sensitive information retained by the browser and used with that site.
  
-These scripts can even rewrite the content of the HTML page. For more details on the different types of XSS flaws, see: Types of [[https://www.owasp.org/index.php/Types_of_Cross-Site_Scripting|Cross-Site Scripting]]. +These scripts can even rewrite the content of the HTML page.
- +
-See [[Help:XSS|XSS]] +
- +
-[[XSS:About XSS|About XSS]] +
- +
-[[XSS:Preventing XSS|Preventing XSS]] +
- +
-[[XSS:XSS Attacks|XSS Attacks]]+
  
 ---- ----
Line 32: Line 24:
  
 ---- ----
 +
 +===== References =====
 +
 +
 +For more details on the different types of XSS flaws, see: Types of [[https://www.owasp.org/index.php/Types_of_Cross-Site_Scripting|Cross-Site Scripting]].
security/xss_cross-site_scripting.1586940248.txt.gz · Last modified: 2020/07/15 09:30 (external edit)
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki