DOM-Based Cross-Site Scripting


DOM-based attacks are a misunderstood, serious, and pervasive source of risk in contemporary web applications. The language that drives the web, JavaScript, is easy to understand and hard to master; junior and senior developers routinely make mistakes. Mix difficulty to master with an enormous attack surface, and you have the perfect storm for widespread vulnerability. These risks expose web ap... » read more