An XSS worm, sometimes referred to as a cross site scripting virus,[1] is a malicious (or sometimes non-malicious) payload, usually written in JavaScript, that breaches browser security to propagate among visitors of a website in the attempt to progressively infect other visitors.[2] They were first mentioned in 2002 in relation to a cross site scripting vulnerability in Hotmail.[3]
^Alcorn, Wade (2005-09-25). "The Cross-site Scripting Virus". BindShell.net. Archived from the original on August 23, 2014.
^Faghani, Mohammad Reza; Saidi, Hossein (2009). "Social Networks' XSS Worms". 2009 International Conference on Computational Science and Engineering. pp. 1137–1141. doi:10.1109/CSE.2009.424. ISBN 978-1-4244-5334-4. S2CID 14451635.
^Berend-Jan Wever. "XSS bug in hotmail login page".
An XSSworm, sometimes referred to as a cross site scripting virus, is a malicious (or sometimes non-malicious) payload, usually written in JavaScript...
viruses and worms Trojan horse (computing) Worm memory test XSSworm Zombie (computer science) Barwise, Mike. "What is an internet worm?". BBC. Archived...
PMC 3551907. PMID 23349699. Faghani, Mohamamd Reza (2013). "A Study of XSSWorm Propagation and Detection Mechanisms in Online Social Networks". IEEE Transactions...
in Blaster Worm Attack". CRN Magazine. August 12, 2004. Archived from the original on 2011-06-06. Retrieved May 11, 2009. "Blaster-B worm author sentenced...
users. Computer worms that sometimes cause abnormal traffic because of millions of infected computers (not coordinated among them). XSSworms can cause high...
by "Samy" to create the first self-propagating cross-site scripting (XSS) worm. MSNBC has reported that "social-networking sites like Myspace are turning...
(active from 2006), Indian film director in Tamil cinema Samy (XSS), a computer worm Samy (Mobile Marketing) Saamy, a 2003 Indian film Saamy Square,...
against SQL Injection. Output encoding, i.e. preventing HTML Injection (XSS) attacks against web site visitors HttpOnly is a flag for HTTP Cookies that...
computer worm used cross-site scripting (XSS) to turn the browser's authenticated MySpace session into a confused deputy. Using XSS the worm forced the...
Clickjacking may be facilitated by – or may facilitate – other web attacks, such as XSS. Likejacking is a malicious technique of tricking users viewing a website...
from the original on 2014-05-29. Retrieved 2014-04-28. Berend-Jan Wever. "XSS bug in hotmail login page". Archived from the original on 2014-07-04. Retrieved...
Panel. Developers later decided to remove HTS easter eggs, as some allowed XSS and SQL exploits and many members submitted false bug reports as a result...
vulnerability disclosure platform allows independent security researchers to report XSS and similar security vulnerabilities on any website they discover using non-intrusive...
original on June 16, 2006. "Malicious Website / Malicious Code: MySpace XSS QuickTime Worm". Websense Security Labs. Archived from the original on December 5...
Language Formatting Objects XSLT—eXtensible Stylesheet Language Transformations XSS—Cross-Site Scripting XTF—eXtensible Tag Framework XTF—eXtended Triton Format...
student at the University of Virginia, discovered a cross-site scripting (XSS) hole in the Facebook Platform that could inject JavaScript into profiles...