Towards removing cross-site scripting vulnerabilities from mobile web applications
Cross-site scripting vulnerabilities are among the most common of security vulnerabilities found in web applications and more recently in mobile versions of web applications. They have caused many successful attacks on web applications on a daily basis including loss of financial and health informat...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Medwell Publishing
2018
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/74324/ http://psasir.upm.edu.my/id/eprint/74324/1/Towards%20removing%20cross-site%20scripting%20vulnerabilities%20from%20mobile%20web%20applications.pdf |
| _version_ | 1848857477039259648 |
|---|---|
| author | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia |
| author_facet | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia |
| author_sort | Hydara, Isatou |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Cross-site scripting vulnerabilities are among the most common of security vulnerabilities found in web applications and more recently in mobile versions of web applications. They have caused many successful attacks on web applications on a daily basis including loss of financial and health information, exposure to malware and viruses and denial of service attacks. Cross-site scripting vulnerabilities are easy to exploit but difficult to mitigate. Most of the existing solutions to cross-site scripting vulnerabilities focus only on the desktop version of web application and there is hardly any focus on the mobile versions. Also, most solutions provided only focus on preventing attacks or detecting the vulnerabilities. Very few research works have addressed eliminating these vulnerabilities from the web applications source codes. In this study, we present our research in progress on the removal of detected cross-site scripting vulnerabilities in mobile versions of web applications. We have proposed an approach in a previous research to detect and remove cross-site scripting vulnerabilities in desktop web applications. We have enhanced that approach and are currently testing it for the removal of cross-site scripting vulnerabilities in mobile versions of web applications. Initial evaluations have indicated promising results. We believe this approach can help web application developers to eliminate cross-site scripting vulnerabilities in not only their desktop web applications but also in the mobile version ones. |
| first_indexed | 2025-11-15T11:58:10Z |
| format | Article |
| id | upm-74324 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T11:58:10Z |
| publishDate | 2018 |
| publisher | Medwell Publishing |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-743242020-03-30T08:15:45Z http://psasir.upm.edu.my/id/eprint/74324/ Towards removing cross-site scripting vulnerabilities from mobile web applications Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Cross-site scripting vulnerabilities are among the most common of security vulnerabilities found in web applications and more recently in mobile versions of web applications. They have caused many successful attacks on web applications on a daily basis including loss of financial and health information, exposure to malware and viruses and denial of service attacks. Cross-site scripting vulnerabilities are easy to exploit but difficult to mitigate. Most of the existing solutions to cross-site scripting vulnerabilities focus only on the desktop version of web application and there is hardly any focus on the mobile versions. Also, most solutions provided only focus on preventing attacks or detecting the vulnerabilities. Very few research works have addressed eliminating these vulnerabilities from the web applications source codes. In this study, we present our research in progress on the removal of detected cross-site scripting vulnerabilities in mobile versions of web applications. We have proposed an approach in a previous research to detect and remove cross-site scripting vulnerabilities in desktop web applications. We have enhanced that approach and are currently testing it for the removal of cross-site scripting vulnerabilities in mobile versions of web applications. Initial evaluations have indicated promising results. We believe this approach can help web application developers to eliminate cross-site scripting vulnerabilities in not only their desktop web applications but also in the mobile version ones. Medwell Publishing 2018 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/74324/1/Towards%20removing%20cross-site%20scripting%20vulnerabilities%20from%20mobile%20web%20applications.pdf Hydara, Isatou and Md Sultan, Abu Bakar and Zulzalil, Hazura and Admodisastro, Novia (2018) Towards removing cross-site scripting vulnerabilities from mobile web applications. Journal of Engineering and Applied Sciences, 13 (16). 6616 - 6621. ISSN 1816-949X; EISSN: 1818-7803 http://docsdrive.com/pdfs/medwelljournals/jeasci/2018/6616-6621.pdf 10.36478/jeasci.2018.6616.6621 |
| spellingShingle | Hydara, Isatou Md Sultan, Abu Bakar Zulzalil, Hazura Admodisastro, Novia Towards removing cross-site scripting vulnerabilities from mobile web applications |
| title | Towards removing cross-site scripting vulnerabilities from mobile web applications |
| title_full | Towards removing cross-site scripting vulnerabilities from mobile web applications |
| title_fullStr | Towards removing cross-site scripting vulnerabilities from mobile web applications |
| title_full_unstemmed | Towards removing cross-site scripting vulnerabilities from mobile web applications |
| title_short | Towards removing cross-site scripting vulnerabilities from mobile web applications |
| title_sort | towards removing cross-site scripting vulnerabilities from mobile web applications |
| url | http://psasir.upm.edu.my/id/eprint/74324/ http://psasir.upm.edu.my/id/eprint/74324/ http://psasir.upm.edu.my/id/eprint/74324/ http://psasir.upm.edu.my/id/eprint/74324/1/Towards%20removing%20cross-site%20scripting%20vulnerabilities%20from%20mobile%20web%20applications.pdf |