Académique Documents
Professionnel Documents
Culture Documents
Badrish Dubey
badrish007@gmail.com
securetechpoint.blogspot.in
INTRODUCTION
XSS was firstly discovered around 1996 and is still in the top
ten vulnerability list for the web applications
Rated 2nd in OWASP (Open Web Application Security
Project) TOP 10
8th in the list of threat classification v2.0 for WASC (Web
Application Security Consortium)
Grouped under client side ATTACK
What XSS can do!!!!
Stealing cookies, this is also known as Session Hijacking.
Redirecting the users to another websites.
Displaying completely different contents on your website.
Performing port scans of the customer’s internal network, which
may lead to a full intrusion attempt.
Denting the REPUTATION and GOODWILL of the organization.
Can lead Huge PENALITY AMOUNT which can affect the
continuity of business
Different flavors of XSS