Cross-Site Scripting for Graphic Data: Vulnerabilities and Prevention
| Title | Cross-Site Scripting for Graphic Data: Vulnerabilities and Prevention |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Zubarev, Dmytro, Skarga-Bandurova, Inna |
| Conference Name | 2019 10th International Conference on Dependable Systems, Services and Technologies (DESSERT) |
| Keywords | animation, Attack, black list, Cascading style sheets, code, Computer graphics, Cross Site Scripting, cross-site scripting, graphic content, graphical content, Human Behavior, Malware, pubcrawl, resilience, Resiliency, Scalability, security of data, SVG, SVG image, TES, Testing, Vulnerability, Web sites, websites, white list., XML, XML treatment method, XSS, XSS Attacks, XSS vulnerabilities |
| Abstract | In this paper, we present an overview of the problems associated with the cross-site scripting (XSS) in the graphical content of web applications. The brief analysis of vulnerabilities for graphical files and factors responsible for making SVG images vulnerable to XSS attacks are discussed. XML treatment methods and their practical testing are performed. As a result, the set of rules for protecting the graphic content of the websites and prevent XSS vulnerabilities are proposed. |
| DOI | 10.1109/DESSERT.2019.8770043 |
| Citation Key | zubarev_cross-site_2019 |
- Scalability
- XSS vulnerabilities
- XSS attacks
- XSS
- XML treatment method
- XML
- white list.
- websites
- Web sites
- Vulnerability
- testing
- TES
- SVG image
- SVG
- security of data
- Cross Site Scripting
- resilience
- pubcrawl
- malware
- Human behavior
- graphical content
- graphic content
- cross-site scripting
- Computer graphics
- code
- Cascading style sheets
- black list
- attack
- animation
- Resiliency