Detecting Persistent Cross-Site Scripting
Source: eEye Digital Security
In recent months, the author has seen a shift in the way that hackers ply their trade. Increasingly, instead of attacking applications to get to the databases they access, hackers are using applications to attack website users. Detection of Persistent Cross-Site Scripting attacks is very challenging because by their nature, the attacks have a data flow that can spans multiple pages. RWSS has created intelligence to detect these Reflection Points and to detect the vulnerability of websites to Persistent Cross-Site Scripting attacks.