English

A Survey on Cross-Site Scripting Attacks

Cryptography and Security 2009-06-01 v1
Authors: Joaquin Garcia-Alfaro , Guillermo Navarro-Arribas
View on arXiv PDF

Abstract

Web applications are becoming truly pervasive in all kinds of business models and organizations. Today, most critical systems such as those related to health care, banking, or even emergency response, are relying on these applications. They must therefore include, in addition to the expected value offered to their users, reliable mechanisms to ensure their security. In this paper, we focus on the specific problem of cross-site scripting attacks against web applications. We present a study of this kind of attacks, and survey current approaches for their prevention. Applicability and limitations of each proposal are also discussed.

Keywords

computer security web browsing cybersecurity

Cite

@article{arxiv.0905.4850,
  title  = {A Survey on Cross-Site Scripting Attacks},
  author = {Joaquin Garcia-Alfaro and Guillermo Navarro-Arribas},
  journal= {arXiv preprint arXiv:0905.4850},
  year   = {2009}
}

Comments

15 pages

Related papers

View all related →
Cryptography and Security · Computer Science
Consideration Points Detecting Cross-Site Scripting
Suman Saha
2009-08-31
Cryptography and Security · Computer Science
Protection of Web Applications from Cross-Site Scripting Attacks in Browser Side
K. Selvamani, A. Duraisamy, A. Kannan
2010-04-13
Cryptography and Security · Computer Science
Twenty-two years since revealing cross-site scripting attacks: a systematic mapping and a comprehensive survey
Abdelhakim Hannousse, Salima Yahiouche, Mohamed Cherif Nait-Hamoud
2024-04-24
Cryptography and Security · Computer Science
A Detailed Survey on Various Aspects of SQL Injection in Web Applications: Vulnerabilities, Innovative Attacks, and Remedies
Diallo Abdoulaye Kindy, Al-Sakib Khan Pathan
2013-06-18
Cryptography and Security · Computer Science
A Study on Web Application Vulnerabilities to find an optimal Security Architecture
C. Amuthadevi, Sparsh Srivastava, Raghav Khatoria, Varun Sangwan
2024-09-02
Cryptography and Security · Computer Science
Malicious web script-based cyber attack protection technology
JongHun Jung, Hwan-Kuk Kim, Soojin Yoon
2015-02-16
Cryptography and Security · Computer Science
Cross-site Scripting Attacks on Android WebView
A B Bhavani
2013-04-30
Cryptography and Security · Computer Science
A Survey of Prevent and Detect Access Control Vulnerabilities
Li Zhong
2023-04-24
Cryptography and Security · Computer Science
Evaluation of Static Analysis on Web Applications
Osejobe Ehichoya, Chinwuba Christian Nnaemeka
2022-12-26
Cryptography and Security · Computer Science
Vulnerability Scanners-A Proactive Approach To Assess Web Application Security
Sheetal Bairwa, Bhawna Mewara, Jyoti Gajrani
2014-03-28
Networking and Internet Architecture · Computer Science
Securing Internet Applications from Routing Attacks
Yixin Sun, Maria Apostolaki, Henry Birge-Lee, Laurent Vanbever +3
2020-08-13
Cryptography and Security · Computer Science
A Holistic Approach to Securing Web Applications
Srdjan Stankovic, Dejan Simic
2010-03-25
Computers and Society · Computer Science
Research Challenges in Management and Compliance of Policies on the Web
Holger M. Kienle, Hausi A. Müller
2008-07-31
Cryptography and Security · Computer Science
Automated Detecting and Repair of Cross-Site Scripting Vulnerabilities
Mahmoud Mohammadi, Bei-Tseng Chu, Heather Richter Lipford
2018-04-06
Cryptography and Security · Computer Science
Understanding The Top 10 OWASP Vulnerabilities
Matthew Bach-Nutman
2020-12-21
Cryptography and Security · Computer Science
Defending against cybersecurity threats to the payments and banking system
Williams Haruna, Toyin Ajiboro Aremu, Yetunde Ajao Modupe
2022-12-26
Cryptography and Security · Computer Science
A Simple and Intuitive Algorithm for Preventing Directory Traversal Attacks
Michael Flanders
2019-08-14
Cryptography and Security · Computer Science
Machine Learning for Detection and Mitigation of Web Vulnerabilities and Web Attacks
Mahnoor Shahid
2023-05-01
Cryptography and Security · Computer Science
Security Analysis of Web Applications Based on Gruyere
Yonghao Ni, Zhongwen Li, Xiaoqi Li
2026-02-03
Computers and Society · Computer Science
A systematic literature review on Ransomware attacks
Shweta Vasoya, Krishna Bhavsar, Nishtha Patel
2022-12-09
Software Engineering · Computer Science
Cross-site scripting adversarial attacks based on deep reinforcement learning: Evaluation and extension study
Samuele Pasini, Gianluca Maragliano, Jinhan Kim, Paolo Tonella
2026-03-23
Cryptography and Security · Computer Science
Phishing Webpage Detection: Unveiling the Threat Landscape and Investigating Detection Techniques
Aditya Kulkarni, Vivek Balachandran, Tamal Das
2025-09-11
Cryptography and Security · Computer Science
Mitigation Techniques for Cyber Attacks: A Systematic Mapping Study
Kashif Ishaq, Sidra Fareed
2023-08-29
Cryptography and Security · Computer Science
A Framework to Prevent QR Code Based Phishing Attacks
T. T. Dayaratne
2016-02-02
Cryptography and Security · Computer Science
Cybersecurity and Frequent Cyber Attacks on IoT Devices in Healthcare: Issues and Solutions
Zag ElSayed, Ahmed Abdelgawad, Nelly Elsayed
2025-01-22
R2 v1 2026-06-21T13:07:34.475Z