Some notes (xss cross-site scripting attacks)

Others 2019-12-09 13:29:29 views: null

xss attack, often referred to "HTML injection" tampered with the page, insert malicious script to control an attack web browser when browsing the web.

xss Category:

1. reflective XSS (non-persistent type XSS)

The user input data "reflected" to the browser. (Entice users to click on a malicious link before a successful attack)

2. Storage type xss

Data input by the user "stored" on the server side, has a strong stability.

Such as blog articles contain malicious JS code was published, all access to the blog of the user's browser perform this malicious code, save malicious script to the server.

3.DOM Based XSS

In effect also said reflective xss, XSS formed by modifying the DOM node of the page.

 

Guess you like

Origin www.cnblogs.com/claudia529/p/12010304.html
Recommended
The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!
Ranking
Getting the basic concepts of ROS + catkin Profile
Spring Learning (2) --- Assembling Beans in the IoC Container
js to get the src attribute of the image regularly
STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud
Short video learning - 3, pandas simple use of pivot_table
Print directory of project configuration log, output log
Understand the difference between vi and vim in Linux in 3 minutes
1 + x certificate Web front-end development HTML5 special exercises
mangodb save and insert the difference
7-1 Family tree processing (50 points) (binary tree solution)
Daily
More
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)

Code World

© 2018 codetd.com