xss - yibinericxia/documents GitHub Wiki

Types

  1. Reflected XSS
  • Input filtering is not enough, and it may introduce new vulnerabilities
  • Internal transformation
  • Output encoding

  1. Stored XSS

  2. DOM based XSS

Tests

Ref: https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html