DOM-Based Cross-Site Scripting

How to protect sensitive data and privileged transactions.


DOM-based attacks are a misunderstood, serious, and pervasive source of risk in contemporary web applications. The language that drives the web, JavaScript, is easy to understand and hard to master; junior and senior developers routinely make mistakes. Mix difficulty to master with an enormous attack surface, and you have the perfect storm for widespread vulnerability. These risks expose web applications to threats similar to well-understood cross-site scripting (XSS) vulnerabilities.

To read more, click here.

Leave a Reply

(Note: This name will be displayed publicly)