SECURITY TECHNIQUES AND SOLUTIONS FOR PREVENTING THE CROSS-SITE SCRIPTING WEB VULNERABILITIES: A GENERAL AAPROACH

Across the World Wide Web the development of social network sites is directly proportional to the complex user-built HTML contents and such things are rapidly becoming the model rather than exception. The complex user-built web messages are the threats for XSS (cross site scripting) attacks which hits different websites and private user information. In such scenario, the process that prevents web application to attacks from XSS has been of great interests for web researchers. The most of the web applications and private user information have security issues with XSS attacks. By applying such technique the attackers embed their malicious scripts onto the application s outputs. Such contaminated responses from the servers are sent to a client s web browser where it is executed and user s confidential information is shifted to a third party. Currently XSS attacks on server sides are prevented, by thoroughly observing, removing and filtering such malicious contents induced by the hackers. The criticality of XSS attack for social network sites effects even greater because a hacker can attempt more socially engineered attack where the marked user can be fooled by realizing that the attack links are initiating attacks both on the client-side and on the server-side by keeping a track of all users information and requests. We have also discussed various recent XSS attacks in real world and have done analysis that why filtering mechanisms are so abortive and being failed in defending these attacks.