Tag
dom-xss
Safeguard articles tagged "dom-xss" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Application Security
A methodology for testing SPAs for client-side vulnerabilities
DOM XSS, token storage, and API exposure don't show up in a server-side scan — here's a repeatable methodology for testing React, Vue, and Angular apps.
Jul 9, 20266 min read
Vulnerabilities
DOM-Based XSS: Finding and Fixing Client-Side Injection
DOM XSS never touches your server, so response scanners miss it. Here is how to trace sources to sinks in client code and shut the flaw down.
Aug 14, 20255 min read