UsefulLinks
Computer Science
Cybersecurity
Cross Site Scripting (XSS)
1. Introduction to Cross-Site Scripting
2. Web Security Foundations
3. XSS Terminology and Concepts
4. XSS Attack Classification
5. Attack Vectors and Injection Points
6. Payload Construction and Techniques
7. Impact and Exploitation Scenarios
8. Vulnerability Discovery Methods
9. Prevention and Defense Strategies
10. Advanced XSS Concepts
11. Server-Side Template Injection
12. Real-World Case Studies
13. Testing and Quality Assurance
14. Incident Response and Remediation
11.
Server-Side Template Injection
11.1.
SSTI vs XSS Distinction
11.1.1.
Execution Context Differences
11.1.2.
Impact Comparison
11.1.3.
Detection Methods
11.2.
Template Engine Vulnerabilities
11.2.1.
Jinja2 Exploitation
11.2.2.
Twig Vulnerabilities
11.2.3.
Smarty Template Risks
11.2.4.
Velocity Template Issues
11.3.
SSTI Exploitation Techniques
11.3.1.
Sandbox Escape Methods
11.3.2.
Code Execution Payloads
11.3.3.
File System Access
11.3.4.
Remote Code Execution
Previous
10. Advanced XSS Concepts
Go to top
Next
12. Real-World Case Studies