Web Security Scanner V1 API - Module Google::Cloud::WebSecurityScanner::V1::Xss::AttackVector (v0.10.0)

Reference documentation and code samples for the Web Security Scanner V1 API module Google::Cloud::WebSecurityScanner::V1::Xss::AttackVector.

Types of XSS attack vector.

Constants

ATTACK_VECTOR_UNSPECIFIED

value: 0
Unknown attack vector.

LOCAL_STORAGE

value: 1
The attack comes from fuzzing the browser's localStorage.

SESSION_STORAGE

value: 2
The attack comes from fuzzing the browser's sessionStorage.

WINDOW_NAME

value: 3
The attack comes from fuzzing the window's name property.

REFERRER

value: 4
The attack comes from fuzzing the referrer property.

FORM_INPUT

value: 5
The attack comes from fuzzing an input element.

value: 6
The attack comes from fuzzing the browser's cookies.

POST_MESSAGE

value: 7
The attack comes from hijacking the post messaging mechanism.

GET_PARAMETERS

value: 8
The attack comes from fuzzing parameters in the url.

URL_FRAGMENT

value: 9
The attack comes from fuzzing the fragment in the url.

HTML_COMMENT

value: 10
The attack comes from fuzzing the HTML comments.

POST_PARAMETERS

value: 11
The attack comes from fuzzing the POST parameters.

PROTOCOL

value: 12
The attack comes from fuzzing the protocol.

STORED_XSS

value: 13
The attack comes from the server side and is stored.

SAME_ORIGIN

value: 14
The attack is a Same-Origin Method Execution attack via a GET parameter.

USER_CONTROLLABLE_URL

value: 15
The attack payload is received from a third-party host via a URL that is user-controllable