S. SinhaBug Bounty Hunting for Web Securityhttps://doi.org/10.1007/978-1-4842-5391-5_4

4. How to Exploit Through Cross-Site Scripting (XSS)

Sanjib Sinha¹

(1)

Howrah, West Bengal, India

Resisting Cross-site Scripting (XSS) is one of the most daunting tasks; web applications usually have many types of vulnerabilities that trigger XSS attacks. It is one of the most common attacks, and it is always featured in the top ten IT security risks.

The bigger the web application, the harder is the task to resist XSS. An attacker sends malicious code in the form of a browser side script, and for that reason it is compulsory to sanitize all the user input fields. In a big web application, such as Google or Facebook, this task is really difficult. ...

Get Bug Bounty Hunting for Web Security: Find and Exploit Vulnerabilities in Web sites and Applications now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Bug Bounty Hunting for Web Security: Find and Exploit Vulnerabilities in Web sites and Applications by Sanjib Sinha

4. How to Exploit Through Cross-Site Scripting (XSS)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly