Paper Info
Title
Cross Channel Scripting and Code Injection Attacks on Web and Cloud-Based Applications: A Comprehensive Review
Abstract
Cross channel scripting (XCS) is a common web application vulnerability, which is a variant of a cross-site scripting (XSS) attack. An XCS attack vector can be injected through network protocol and smart devices that have web interfaces such as routers, photo frames, and cameras. In this attack scenario, the network devices allow the web administrator to carry out various functions related to accessing the web content from the server. After the injection of malicious code into web interfaces, XCS attack vectors can be exploited in the client browser. In addition, scripted content can be injected into the networked devices through various protocols, such as network file system, file transfer protocol (FTP), and simple mail transfer protocol. In this paper, various computational techniques deployed at the client and server sides for XCS detection and mitigation are analyzed. Various web application scanners have been discussed along with specific features. Various computational tools and approaches with their respective characteristics are also discussed. Finally, shortcomings and future directions related to the existing computational techniques for XCS are presented.
Year
DOI
Venue
2022
10.3390/s22051959
SENSORS
Keywords
DocType
Volume
cross channel scripting, attack vector, scanners, web application security, XSS
Journal
22
Issue
ISSN
Citations 
5
1424-8220
0
PageRank 
References 
Authors
0.34
0
5
Name
Order
Citations
PageRank
Indushree M100.34
Manjit Kaur2238.41
Manish Raj300.34
Shashidhara R400.34
Heung-No Lee505.41