Detecting and Prevention Cross -Site Scripting Techniques

Download Now Date Added: Apr 2012
Format: PDF

Cross-site scripting is one of the main problems of any Web-based service. Since Web browsers support the execution of commands embedded in Web pages to enable dynamic Web pages attackers can make use of this feature to enforce the execution of malicious code in a user's Web browser. To augment the users' experience many Web applications are using client side scripting languages such as JavaScript but this growing of JavaScript is increasing serious security vulnerabilities in web application too, such as Cross-Site Scripting (XSS). In this paper, the author surveys all the techniques those have been used to detect XSS and arrange a number of analyses to evaluate performances of those methodologies.