WEB CLIENT–RELATED VULNERABILITIES (XSS)


Please sign in to view the rest of this entry.

WEB CLIENT–RELATED VULNERABILITIES (XSS)
1011404WEB CLIENT–RELATED VULNERABILITIES (XSS)
<anchor role="natural" id="p2001b4bf9980064"></anchor><emphasis role="bold">OVERVIEW OF THE SIN</emphasis> The advent of desktop and web-based gadgets and widgets has ushered in a more common kind of sin: that of the type-0, or DOM-based, cross-site scripting vulnerability. Notice we said “more common” and not “new”; these sins are not new, but they have become more common over the last couple of years.
Citation
Michael Howard; David LeBlanc; John Viega: 24 Deadly Sins of Software Security: Programming Flaws and How to Fix Them. WEB CLIENT–RELATED VULNERABILITIES (XSS), Chapter (McGraw-Hill Professional, 2010), AccessEngineering Export