scripting.html — Search

US HTML Standard

https://html.spec.whatwg.org/multipage/scripting.html

HTML Standard 4.12 Scripting 4.12.1 The script element 4.12.1.1 Processing model 4.12.1.2 Scripting languages 4.12.1.3 Restrictions for contents of script elements 4.12.1.4 Inline documentation for external scripts 4.12.1.5 Interaction of script elements and XSLT 4.12.2 The noscr…

2026-04-25 02:25 View archive →

US WSTG - v4.1 | OWASP Foundation

https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Te…

WSTG - v4.1 | OWASP Foundation WSTG - v4.1 Testing for Reflected Cross Site Scripting ID WSTG-INPV-01 Summary Reflected Cross-site Scripting (XSS) occur when an attacker injects browser executable code within a single HTTP response. The injected attack is not stored within the ap…

2026-04-24 09:39 View archive →

US WSTG - v4.1 | OWASP Foundation

https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Te…

WSTG - v4.1 | OWASP Foundation WSTG - v4.1 Testing for DOM-Based Cross Site Scripting ID WSTG-CLNT-01 Summary DOM-based cross-site scripting is the de-facto name for XSS bugs that are the result of active browser-side content on a page, typically JavaScript, obtaining user input …

2026-04-24 09:39 View archive →

US WSTG - v4.1 | OWASP Foundation

https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Te…

WSTG - v4.1 | OWASP Foundation WSTG - v4.1 Testing for Stored Cross Site Scripting ID WSTG-INPV-02 Summary Stored Cross-site Scripting (XSS) is the most dangerous type of Cross Site Scripting. Web applications that allow users to store data are potentially exposed to this type of…

2026-04-24 09:35 View archive →