Home > CAPEC List > CAPEC-341: WASC-08 - Cross-Site Scripting (Version 2.4)  

CAPEC CATEGORY: WASC-08 - Cross-Site Scripting

 
WASC-08 - Cross-Site Scripting
Definition in a New Window Definition in a New Window
Category ID: 341
 
Status: Draft
+ Description

Summary

This category is related to the WASC Threat Classification 2.0 item Cross-Site Scripting
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
MemberOfAttack PatternAttack Pattern18Embedding Scripts in Non-Script Elements
WASC Threat Classification 2.0333
MemberOfAttack PatternAttack Pattern19Embedding Scripts within Scripts
WASC Threat Classification 2.0333
MemberOfAttack PatternAttack Pattern63Simple Script Injection
WASC Threat Classification 2.0333
MemberOfViewView333WASC Threat Classification 2.0
WASC Threat Classification 2.0333
+ References
[R.341.1] [REF-1] "WASC Threat Classification 2.0". WASC-08 - Cross-Site Scripting. The Web Application Security Consortium (WASC). 2010. <http://projects.webappsec.org/Cross-Site-Scripting>.
+ Content History
Submissions
SubmitterOrganizationDate
Romain GaucherCigital, Inc.2010-02-01
Previous Entry Names
DatePrevious Entry Name
2014-04-10WASC Threat Classification 2.0 - WASC-08 - Cross-Site Scripting

Page Last Updated: April 10, 2014