Home > CAPEC List > CAPEC-341: WASC-08 - Cross-Site Scripting (Version 2.6)  

CAPEC CATEGORY: WASC-08 - Cross-Site Scripting

 
WASC-08 - Cross-Site Scripting
Definition in a New Window Definition in a New Window
Category ID: 341
 
Status: Draft
+ Description

Summary

This category is related to the WASC Threat Classification 2.0 item Cross-Site Scripting
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
MemberOfAttack PatternAttack Pattern18Embedding Scripts in Non-Script Elements
WASC Threat Classification 2.0333
MemberOfAttack PatternAttack Pattern19Embedding Scripts within Scripts
WASC Threat Classification 2.0333
MemberOfAttack PatternAttack Pattern63Simple Script Injection
WASC Threat Classification 2.0333
MemberOfViewView333WASC Threat Classification 2.0
WASC Threat Classification 2.0333
+ References
[R.341.1] [REF-1] "WASC Threat Classification 2.0". WASC-08 - Cross-Site Scripting. The Web Application Security Consortium (WASC). 2010. <http://projects.webappsec.org/Cross-Site-Scripting>.
+ Content History
Submissions
SubmitterOrganizationDateSource
CAPEC Content TeamThe MITRE Corporation2014-06-23Internal_CAPEC_Team

Page Last Updated: July 23, 2014