[ Auditing With OWASP ] :: [ Vulnerability A7: Cross-Site Scripting XSS ]

This entry is part 4 of 4 in the series [ Auditing With the OWASP Top 10 ]

Vulnerability A7: Cross-Site Scripting XSS XSS is oh, so useful for oh, so many things. Here’s a summary: https://owasp.org/www-project-top-ten/OWASP_Top_Ten_2017/Top_10-2017_A7-Cross-Site_Scripting_(XSS) Practice and Process Okay, start here: https://www.owasp.org/index.php/OWASP_Testing_Guide_v4_Table_of_Contents You’ll see that the wiki is “retired”, and the new website (hopefully) holds all the old material too. We need: XSS Filter Evasion Cheat Sheet https://owasp.org/www-community/xss-filter-evasion-cheatsheet Scan down the …