Riding out DOMsday: Towards Detecting and Preventing DOM Cross-Site Scripting

Melicher, William; Das, Anupam; Sharif, Mahmood; Bauer, Lujo; Jia, Limin

doi:10.14722/ndss.2018.23309

Cited by 55 publications

(57 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…First, state-of-the-art automated techniques for detecting XSS vulnerabilities in the web typically work with client-side XSS [33,35,49,53], whereas the XSS attacks against cloud-application add-ons may also exist on the server side. For example, the vulnerabilities of MS Office Online add-ons are always on the client side because the attacker's malicious input is propagated to the add-on via local messaging (i.e.…”

Section: Analysis Methodologymentioning

confidence: 99%

XSS Vulnerabilities in Cloud-Application Add-Ons

Bui

Rao

Antikainen

et al. 2020

Proceedings of the 15th ACM Asia Conference on Computer and Communications Security

View full text Add to dashboard Cite

Many cloud-application vendors open their APIs for third-party developers to easily extend the functionality of their applications. The features implemented with these APIs are called add-ons (also called add-ins or apps). This is a relatively new phenomenon, and its effects on the application security have not been widely studied. It seems likely that some of the add-ons have lower code quality than the core applications themselves and, thus, may bring in security vulnerabilities. In this work, we found that many of such add-ons are vulnerable to cross-site scripting (XSS). The attacker can take advantage of the document-sharing and messaging features of the cloud applications to send malicious input to them. The vulnerable add-ons then execute client-side JavaScript from the carefully crafted malicious input. In a major analysis effort, we systematically studied 300 add-ons for three popular application suites, namely Microsoft Office Online, G Suite and Shopify, and discovered a significant percentage of vulnerable add-ons among them. We present the results of this study, as well as analyze the add-on architectures to understand how the XSS vulnerabilities can be exploited and how the threat can be mitigated.

show abstract

Section: Analysis Methodologymentioning

confidence: 99%

XSS Vulnerabilities in Cloud-Application Add-Ons

Bui

Rao

Antikainen

et al. 2020

Proceedings of the 15th ACM Asia Conference on Computer and Communications Security

View full text Add to dashboard Cite

show abstract

“…Our attack also utilizes cross-domain file inclusion to launch the SW-XSS attack, thus we share the same sentiment regarding this issue. In recent years, a variant of XSS called DOM-XSS is emerging [17,18,23]. DOM-XSS can be similar to our attack in a sense that it allows attackers to execute remote code on the client-side.…”

Section: Related Workmentioning

confidence: 99%

Security Study of Service Worker Cross-Site Scripting.

Chinprutthiwong¹,

Vardhan²,

Yang³

et al. 2020

Annual Computer Security Applications Conference

View full text Add to dashboard Cite

“…We only investigate CSP in isolation. In addition to that, research has shown that a non-negligible fraction of sites suffers from markup injection vulnerabilities [13,15,30].…”

Section: Limitations and Potential Modificationsmentioning

confidence: 99%