Vulnerability Development mailing list archives

Re: Cross site scripting explained

From: Jirka Kosina <jikos () jikos cz>
Date: Sun, 15 Dec 2002 18:47:55 +0100 (CET)

On Sun, 15 Dec 2002, michael judge wrote:

Can anyone explain to me or point me to a paper that explains exactly
what cross site scripting is, and how it could be useful/cause
problems for someone?  Thanks.


You can start for example with

http://www.cert.org/archive/pdf/cross_site_scripting.pdf

then read the XSS-faq at

http://www.cgisecurity.com/articles/xss-faq.shtml

etc.

--
JiKos.

Current thread:

Cross site scripting explained michael judge (Dec 15)
- RE: Cross site scripting explained Loki (Dec 16)
- Re: Cross site scripting explained Jirka Kosina (Dec 16)
- Re: Cross site scripting explained sullo (Dec 16)
- <Possible follow-ups>
- Re: Cross site scripting explained Dave Monnier (Dec 16)
- Re: Cross site scripting explained Stephen Friedl (Dec 16)
- RE: Cross site scripting explained Troy Patrick Frost (Dec 16)
- RE: Cross site scripting explained Arjen De Landgraaf (Dec 16)
- RE: Cross site scripting explained sreed (Dec 16)
- Re: Cross site scripting explained Slow2Show (Dec 16)
- Re: Cross site scripting explained appsec (Dec 20)