You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -42,7 +42,7 @@ To highlight the criticality of XSS and give us the means to mitigate their effe
### How to know if a XSS is critical ?
That's important to caracterize with strictness XSS. There is to many people which only tag this vulnerability as "XSS" which is dangerous since there will be misunderstood and often under valuation of gravity.
That's important to caracterize with strictness XSS. There is too many people which only tag this vulnerability as "XSS" which is dangerous since there will be misunderstood and often under valuation of gravity.
The most dangerous are XSS of type 2 according to their official CWE ([CWE-79](https://cwe.mitre.org/data/definitions/79.html)), meaning Stored-XSS (or persistent XSS) and more specialy those which can be injected from FRONT by guest or assimilated to target BACK.
