OWASP TOP 10: Cross-site Scripting - XSS - Detectify Blog
Tags
attack-pattern: Data Javascript - T1059.007 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID e7168cc4-0db5-40c6-994e-36236838c62d
Fingerprint f52308574c279595
Analysis status DONE
Considered CTI value 0
Text language
Published May 13, 2016, 2:07 p.m.
Added to db Jan. 18, 2023, 8:26 p.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline An EASM blog from Detectify
Title OWASP TOP 10: Cross-site Scripting - XSS - Detectify Blog
Detected Hints/Tags/Attributes 27/1/17
Source URLs
Redirection Url
Details Source https://blog.detectify.com/2016/05/13/owasp-top-10-cross-site-scripting-3/
URL Provider
Details Provider Source level domain
Details detectify.com blog.detectify.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
blogs.apache.org
Details Domain 831 
example.com
Details Domain 70 
evil.com
Details Domain 1 
support.detectify.com
Details Domain 57 
www.owasp.org
Details Domain 1 
scriptalert1.com
Details File 61 
search.php
Details File 1206 
index.php
Details Url 1 
https://blogs.apache.org/infra/entry/apache_org_04_09_2010
Details Url 1 
https://example.com/search.php?query=test
Details Url 1 
https://example.com/search.php?query=
Details Url 1 
https://example.com/search.php?query=<script>document.innerhtml
Details Url 1 
http://evil.com?cookie="+document.cookie
Details Url 1 
http://support.detectify.com/customer/en/portal/articles/1711512-cross-site-scripting
Details Url 1 
https://support.detectify.com/support/solutions/articles/48001048952-missing-httponly-flag-on-cookies
Details Url 1 
https://www.owasp.org/index.php/top_10_2013-a3-cross-site_scripting_
Details Url 1 
http://scriptalert1.com