Cross Site Scripting (XSS)
Text Fields
Hidden Fields
Textarea Elements
Select Options
Query Parameters
Path Components
Fragment Identifiers
User-Agent Manipulation
Referer Header Injection
Custom Header Processing
X-Forwarded-For Exploitation
Filename Injection
Metadata Exploitation
Content-Type Manipulation
Cookie Value Manipulation
Cookie Name Exploitation
Message Content Injection
Protocol Upgrade Exploitation
Widget Embedding
Social Media Integration
Advertisement Networks
Analytics Platforms
Content Delivery Networks
Previous
4. XSS Attack Classification
Go to top
Next
6. Payload Construction and Techniques