• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>2017 International Conference on Promising Electronic Technologies >Detection and Removing Cross Site Scripting Vulnerability in PHP Web Application
【24h】

Detection and Removing Cross Site Scripting Vulnerability in PHP Web Application

机译:检测和消除PHP Web应用程序中的跨站点脚本漏洞

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Cross Site Scripting (XSS) vulnerability acts as one of the chief widespread security issues in web applications. By reviewing the literature pertaining to XSS vulnerability, it has been found that many investigations have directed their energy only on XSS vulnerability detection, but not many studies have concentrated on removing XSS vulnerability. This paper embed the removal stage of XSS vulnerability to our previous approach of detection XSS vulnerability, in a way to make the approach fully to detect and remove XSS vulnerability from PHP source code. We conducted two experiments to detect and remove Reflected and Stored XSS vulnerability. The results show that our approach is able to detect and remove XSS vulnerability in PHP source code. More research is required in the field of removing XSS vulnerability from the application source code before deployment.
机译:跨站点脚本(XSS)漏洞是Web应用程序中普遍存在的主要安全问题之一。通过回顾与XSS漏洞有关的文献,发现许多研究仅将精力集中在XSS漏洞检测上,但是很少有研究专注于消除XSS漏洞。本文将XSS漏洞的删除阶段嵌入到我们先前的XSS漏洞检测方法中,以使该方法能够完全检测并从PHP源代码中删除XSS漏洞。我们进行了两个实验来检测和消除Reflected和Stored XSS漏洞。结果表明,我们的方法能够检测并消除PHP源代码中的XSS漏洞。在部署之前,需要从应用程序源代码中消除XSS漏洞的领域中,需要做更多的研究。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号