Imperva Blog|Login|中文Deutsch日本語

Videos

Year: 2014 2013 2012 2011 2010 2009 2008 All Hide Descriptions
Selected Tag: XSS | Show All
Detecting XSS Scripting (Cross-Site Scripting)

Detecting XSS Scripting (Cross-Site Scripting)


This video should be viewed following the Script Injection video demonstration. Cross-site scripting ('XSS' or 'CSS') is an attack that takes advantage of a Web site vulnerability in which the site displays content that includes un-sanitized user-provided data. For example, an attacker might place a hyperlink with an embedded malicious script into an online discussion forum. That purpose of the malicious script is to attack other forum users who happen to select the hyperlink. For example it could copy user cookies and then send those cookies to the attacker.

Tags: Attack Method, XSS, Cross-site scripting, CSS, Web Application Security, Database Security

Play Video  
Selected Tag: XSS | Show All