[Owasp-leaders] OWASP DOM based XSS definition, which looked a little off

Achim achim at owasp.org
Wed Oct 23 19:41:11 UTC 2013


Am 23.10.2013 18:44, schrieb Colin Watson:
> For completeness, are we happy that JavaScript injection into server-side
> application code (e.g. node.js) is best described as "command injection"
> and not any sort of XSS?
> 
> Colin

+1
+1


More information about the OWASP-Leaders mailing list