Network World

The what, who, when, where, why and how of XSS

DOM-based XSS attacks exploit the trust relationships in the DOM model. Once elements are parsed by DOM, they can be trusted by other domains, and this is especially true with newer, more ...