Code-injection Vulnerabilities in Web Applications — Exemplified at Cross-site Scripting
نویسندگان
چکیده
منابع مشابه
Code Injection Vulnerabilities in Web Applications: Exemplified at Cross-site Scripting
The majority of all security problems in today’s Web applications is caused by stringbased code injection, with Cross-site Scripting (XSS) being the dominant representative of this vulnerability class. This thesis discusses XSS and suggests defense mechanisms. We do so in three stages: First, we conduct a thorough analysis of JavaScript’s capabilities and explain how these capabilities are util...
متن کاملDefending against Web Vulnerabilities and Cross-site Scripting
Researchers have devised multiple solutions to cross-site scripting, but vulnerabilities persists in many Web applications due to developer‟s lack of expertise in the problem identification and their unfamiliarity with the current mechanisms. As proclaimed by the experts, cross-site scripting is among the serious and widespread threats in Web applications these days more than buffer overflows. ...
متن کاملCountering Cross-Site Scripting in Web-based Applications
Today’s dynamic web-based applications have become a normal and critical asset to an organizations business. They come with an increase in the number of web vulnerabilities and attacks. These weaknesses allow hackers to focus their attention on attacking this important information source. The most common vulnerability is cross-site scripting (XSS) and one of the Open Web Application Security pr...
متن کاملPrevention of Cross-Site Scripting Attacks on Current Web Applications
Security is becoming one of the major concerns for web applications and other Internet based services, which are becoming pervasive in all kinds of business models and organizations. Web applications must therefore include, in addition to the expected value offered to their users, reliable mechanisms to ensure their security. In this paper, we focus on the specific problem of preventing cross-s...
متن کاملTracing out Cross Site Scripting Vulnerabilities in Modern Scripts
Haneet Kour M.Tech. Student (4 Sem) Department of Computer Science & IT, University of Jammu, J & K Email: [email protected] Lalit Sen Sharma Professor Department of Computer Science & IT, University of Jammu, J & K Email: [email protected] -------------------------------------------------------------------ABSTRACT--------------------------------------------------------------Web Tec...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: itit
سال: 2011
ISSN: 2196-7032,1611-2776
DOI: 10.1524/itit.2011.0651