DOM based Cross Site Scripting - Client-Side Attacks on Browsers

Andrea Hauser
2017 Zenodo  
DOM stands for Document Object Model. XSS stands for cross-site scripting. The main difference between DOM based XSS and other XSS vulnerabilities is that the payload is embedded on the client side rather than the server side. DOM based XSS vulnerabilities therefore have to be prevented on the client side.
doi:10.5281/zenodo.3521860 fatcat:h3kbl4ahmfgnfbefalgqjyyrsq