Towards cross-site scripting vulnerability detection in mobile web applications
Cross-site scripting vulnerabilities are among the top ten security vulnerabilities affecting web applications for the past decade and mobile version web applications more recently. They can cause serious problems for web users such as loss of personal information to web attackers, including financi...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Science Publishing Corporation
2018
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/74321/ http://psasir.upm.edu.my/id/eprint/74321/1/Towards%20cross-site%20scripting%20vulnerability%20detection%20in%20mobile%20web%20applications.pdf |
| _version_ | 1848857476455202816 |
|---|---|
| author | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Indriaty |
| author_facet | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Indriaty |
| author_sort | Hydara, Isatou |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Cross-site scripting vulnerabilities are among the top ten security vulnerabilities affecting web applications for the past decade and mobile version web applications more recently. They can cause serious problems for web users such as loss of personal information to web attackers, including financial and health information, denial of service attacks, and exposure to malware and viruses. Most of the proposed solutions focused only on the Desktop versions of web applications and overlooked the mobile versions. Increasing use of mobile phones to access web applications increases the threat of cross-site scripting attacks on mobile phones. This paper presents work in progress on detecting cross-site scripting vulnerabilities in mobile versions of web applications. It proposes an enhanced genetic algorithm-based approach that detects cross-site scripting vulnerabilities in mobile versions of web applications. This approach has been used in our previous work and successfully detected the said vulnerabilities in Desktop web applications. It has been enhanced and is currently being tested in mobile versions of web applications. Preliminary results have indicated success in the mobile versions of web applications also. This approach will enable web developers find cross-site scripting vulnerabilities in the mobile versions of their web applications before their release. |
| first_indexed | 2025-11-15T11:58:09Z |
| format | Article |
| id | upm-74321 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T11:58:09Z |
| publishDate | 2018 |
| publisher | Science Publishing Corporation |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-743212020-04-22T16:41:09Z http://psasir.upm.edu.my/id/eprint/74321/ Towards cross-site scripting vulnerability detection in mobile web applications Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Indriaty Cross-site scripting vulnerabilities are among the top ten security vulnerabilities affecting web applications for the past decade and mobile version web applications more recently. They can cause serious problems for web users such as loss of personal information to web attackers, including financial and health information, denial of service attacks, and exposure to malware and viruses. Most of the proposed solutions focused only on the Desktop versions of web applications and overlooked the mobile versions. Increasing use of mobile phones to access web applications increases the threat of cross-site scripting attacks on mobile phones. This paper presents work in progress on detecting cross-site scripting vulnerabilities in mobile versions of web applications. It proposes an enhanced genetic algorithm-based approach that detects cross-site scripting vulnerabilities in mobile versions of web applications. This approach has been used in our previous work and successfully detected the said vulnerabilities in Desktop web applications. It has been enhanced and is currently being tested in mobile versions of web applications. Preliminary results have indicated success in the mobile versions of web applications also. This approach will enable web developers find cross-site scripting vulnerabilities in the mobile versions of their web applications before their release. Science Publishing Corporation 2018 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/74321/1/Towards%20cross-site%20scripting%20vulnerability%20detection%20in%20mobile%20web%20applications.pdf Hydara, Isatou and Md Sultan, Abu Bakar and Zulzalil, Hazura and Admodisastro, Novia Indriaty (2018) Towards cross-site scripting vulnerability detection in mobile web applications. International Journal of Engineering and Technology(UAE), 7 (4.1). 18 - 21. ISSN 2227-524X http://www.sciencepubco.com/index.php/IJET |
| spellingShingle | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Indriaty Towards cross-site scripting vulnerability detection in mobile web applications |
| title | Towards cross-site scripting vulnerability detection in mobile web applications |
| title_full | Towards cross-site scripting vulnerability detection in mobile web applications |
| title_fullStr | Towards cross-site scripting vulnerability detection in mobile web applications |
| title_full_unstemmed | Towards cross-site scripting vulnerability detection in mobile web applications |
| title_short | Towards cross-site scripting vulnerability detection in mobile web applications |
| title_sort | towards cross-site scripting vulnerability detection in mobile web applications |
| url | http://psasir.upm.edu.my/id/eprint/74321/ http://psasir.upm.edu.my/id/eprint/74321/ http://psasir.upm.edu.my/id/eprint/74321/1/Towards%20cross-site%20scripting%20vulnerability%20detection%20in%20mobile%20web%20applications.pdf |