dotnetavalanche
Reputation: 890
Is Persistent XSS and Stored XSS are EXACLY Same?
Can I safely assume that Stored XSS is not Subset OR Superset to Persistent XSS and they mean exactly the same thing. If different Please suggest few links to read further on this in Dotnet Web applications context.
Upvotes: 0
Views: 59
Answers (1)
Simon Bennetts
Reputation: 6196
Yes.
See https://www.owasp.org/index.php/Types_of_Cross-Site_Scripting : "Stored XSS (AKA Persistent or Type I)"
Here's a good technology independent description of XSS: https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)
There's also this on the MS site: https://learn.microsoft.com/en-us/aspnet/core/security/cross-site-scripting but I dont use dotnet so cant vouch for its content.
Upvotes: 1
Related Questions
- Major differences and definitions, between Persistent XSS and Non-Persistent XSS
- Anti XSS and Classic ASP
- What is the difference between stored xss and reflected xss?
- Self XSS vs Reflected XSS
- What is the difference between AntiXss.HtmlEncode and HttpUtility.HtmlEncode?
- Which of the following ways works better to prevent XSS attacks?
- Server XSS vs. client XSS
- ASP.NET is HttpCookie a persistent or session type of cookie
- Anti XSS support in ASP.net Vs AntiXss Lib
- XSS as attack vector even if XSS data not stored?