UPM Institutional Repository

The limitations of cross-site scripting vulnerabilities detection and removal techniques


Citation

Hydara, Isatou and Md Sultan, Abu Bakar and Zulzalil, Hazura and Admodisastro, Novia (2021) The limitations of cross-site scripting vulnerabilities detection and removal techniques. Turkish Journal of Computer and Mathematics Education, 12 (3). 1975- 1980. ISSN 1309-4653

Abstract

Web applications have become very important tools in our daily activities as we use them to share and get information, conduct businesses, and interact with family and friends on social media through the Internet. Despite their importance, web applications are plagued with many security vulnerabilities that enable hackers to attack them and compromise user information and privacy. Cross-site scripting vulnerabilities are a type of injection vulnerabilities existing in web applications. They can lead to attacks in web applications due to the lack of proper validation of input data in the affected web pages of an application. Many approaches and techniques have been proposed to mitigate this type of vulnerabilities. However, these solutions have some limitations and cross-site scripting vulnerabilities still remain as a major security problem for web applications. This paper explores and presents the existing techniques for detecting and for removing cross-site scripting vulnerabilities in web application. It gives an overview of cross-site scripting as a security issue in web application and its different types. The advantages as well as the limitations of each techniques are highlighted and discussed. Based on the limitations, some possible future research directions are identified, and recommendations are given as reference for researchers interested in this topic.


Download File

[img] Text
The limitations of cross-site scripting vulnerabilities detection and removal techniques.pdf

Download (85kB)

Additional Metadata

Item Type: Article
Divisions: Faculty of Computer Science and Information Technology
DOI Number: https://doi.org/10.17762/turcomat.v12i3.1033
Publisher: Karadeniz Technical University
Keywords: Cross-site scripting; Cross-site scripting attacks; Cross-site scripting vulnerabilities; Web application security
Depositing User: Ms. Che Wa Zakaria
Date Deposited: 22 Aug 2022 06:41
Last Modified: 22 Aug 2022 06:41
Altmetrics: http://www.altmetric.com/details.php?domain=psasir.upm.edu.my&doi=10.17762/turcomat.v12i3.1033
URI: http://psasir.upm.edu.my/id/eprint/95515
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item