Inglorious Headers
| Main Author: | Veit Hailperin |
|---|---|
| Other Authors: | Marc Ruef |
| Format: | Article |
| Bahasa: | eng |
| Terbitan: |
, 2016
|
| Subjects: | |
| Online Access: |
https://zenodo.org/record/3521585 |
Daftar Isi:
- During XSS attacks, JavaScript-Code is being snuck into websites. There are several classes of XSS. So-called Reflected XSS [4] that return the user input without any filters in the response. It’s one of the most commonly found XSS vulnerabilities. Stored or Persistent XSS [5] additionally stores the entered code on the website in things such as guest books or forums. DOM-based XSS [6] that uses active code such as JavaScript on the browser side in an insecure way and Mutation-Based XSS [7] that sees browsers interpret slightly altered code and transform it into working code. Other, more obscure versions of XSS are not being respected here.
- This paper was written in 2016 as part of a research project at scip AG, Switzerland. It was initially published online at https://www.scip.ch/en/?labs.20160121 and is available in English and German. Providing our clients with innovative research for the information technology of the future is an essential part of our company culture.