Introduction to the 3 types of XSS
In this part I will give you a short introduction to each type of XSS, for more details, see my other articles on the subject.
Stored XSS is a type of XSS where the injected script is stored in the database and displayed to other users. For example a forum page. This type of XSS can be very dangerous because as long as the database is not changed, all users will be attacked. Regarding the exploit, it is a classic exploit with
XSS is considered reflected when the malicious script is in a parameter of the url. Like for example a function “Search” which would have a parameter “?search=xss”. The advantage of this XSS is to be able to target a user in particular by sending him our trapped url. As for the stored XSS it is a classic exploit.
DOM Based XSS