XAS: Cross-API scripting attacks in social ecosystems
نویسندگان
چکیده
منابع مشابه
Cross-Site Scripting Attacks in Social Network APIs
Nowadays, it is becoming more popular that RESTful APIs are used by web developers to enhance the functionality of websites. However, this might raise potential XSS attack threats. Unlike traditional XSS attacks, XSS attacks in this scenario may take advantage of more characteristics of RESTful APIs. RESTful APIs are common in social networks. Consequently, in this paper, we took social network...
متن کاملCross-site Scripting Attacks on Android WebView
WebView is an essential component in Android and iOS. It enables applications to display content from on-line resources. It simplifies task of performing a network request, parsing the data and rendering it. WebView uses a number of APIs which can interact with the web contents inside WebView. In the current paper, Cross-site scripting attacks or XSS attacks specific to Android WebView are disc...
متن کاملA Survey on Cross-Site Scripting Attacks
Web applications are becoming truly pervasive in all kinds of business models and organizations. Today, most critical systems such as those related to health care, banking, or even emergency response, are relying on these applications. They must therefore include, in addition to the expected value offered to their users, reliable mechanisms to ensure their security. In this paper, we focus on t...
متن کاملHunting Cross-Site Scripting Attacks in the Network
Cross-site Scripting (XSS) attacks in web applications are considered a major threat. In a yearly basis, large IT security vendors export statistics that highlight the need for designing and implementing more efficient countermeasures for securing modern web applications and web users. So far, all these studies are carried out by IT security vendors. The academic community lacks of the tools fo...
متن کاملXSS-GUARD: Precise Dynamic Prevention of Cross-Site Scripting Attacks
This paper focuses on defense mechanisms for cross-site scripting attacks, the top threat on web applications today. It is believed that input validation (or filtering) can effectively prevent XSS attacks on the server side. In this paper, we discuss several recent real-world XSS attacks and analyze the reasons for the failure of filtering mechanisms in defending these attacks. We conclude that...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Science China Information Sciences
سال: 2014
ISSN: 1674-733X,1869-1919
DOI: 10.1007/s11432-014-5145-1