Twenty-two years since revealing cross-site scripting attacks: a systematic mapping and a comprehensive survey. (arXiv:2205.08425v1 [cs.CR])

Cross-site scripting (XSS) is one of the major threats menacing the privacy
of data and the navigation of trusted web applications. Since its reveal in
late 1999 by Microsoft security engineers, several techniques have been
developed in the aim to secure web navigation and protect web applications
against XSS attacks. The problem became worse with the emergence of advanced
web technologies such as Web services and APIs and new programming styles such
as AJAX, CSS3 and HTML5. While new technologies …

attacks cross-site scripting survey