Security of your web application is very important in the jungle of web where every one trying to get into your web application and trying to get maximum information about your server.
your web application faces various type of attacks, before a miscellaneous user find the way to enter your web you should find the way and fix it.
There are so many wrong assumption for XSS present like ” You can’t own a web application via XSS”.
There are several types of cross site scripting available and the one of them is DOM based XSS.
DOM Based XSS (or as it is called in some texts, “type-0 XSS”) is an XSS attack wherein the attack payload is executed as a result of modifying the DOM “environment” in the victim’s browser used by the original client side script, so that the client side code runs in an “unexpected” manner. That is, the page itself (the HTTP response that is) does not change, but the client side code contained in the page executes differently due to the malicious modifications that have occurred in the DOM environment.
DOM XSS Scanner is an online tool that helps you find potential DOM based XSS security vulnerabilities. To get started simply enter a URL to review the source code of the corresponding resource with DOM XSS sources and sinks being highlighted on the results page.
Click here for more information and scanner.
You Might Also Like: