Institute of Electrical & Electronic Engineers
Now-a-days, it is becoming more popular that RESTful APIs are used by web developers to enhance the functionality of websites. However, this might raise potential XSS attack threats. Unlike traditional XSS attacks, XSS attacks in this scenario may take advantage of more characteristics of RESTful APIs. RESTful APIs are common in social networks. Consequently, in this paper, the authors took social networks as motivating examples to illustrate XSS attacks in RESTful APIs. This paper presents the first systematic and deep security analysis on XSS attacks in RESTful APIs in social networks.