Research Article
XSS Vulnerability Test Enhancement for Progressive Web Applications
@INPROCEEDINGS{10.1007/978-3-031-56583-0_10, author={Josep Pegueroles Valles and Sebastien Kanj Bongard and Arnau Estebanell Castellv\^{\i}}, title={XSS Vulnerability Test Enhancement for Progressive Web Applications}, proceedings={Digital Forensics and Cyber Crime. 14th EAI International Conference, ICDF2C 2023, New York City, NY, USA, November 30, 2023, Proceedings, Part II}, proceedings_a={ICDF2C PART 2}, year={2024}, month={4}, keywords={Progressive Web Application security vulnerability scanners XSS sqli false negatives}, doi={10.1007/978-3-031-56583-0_10} }- Josep Pegueroles Valles
Sebastien Kanj Bongard
Arnau Estebanell Castellví
Year: 2024
XSS Vulnerability Test Enhancement for Progressive Web Applications
ICDF2C PART 2
Springer
DOI: 10.1007/978-3-031-56583-0_10
Abstract
Progressive Web Applications produce false negative results when scanned with security vulnerability scanners. In this paper the authors investigate the causes behind vulnerability scanners missing simple vulnerabilities when being used on Progressive Web Applications (PWAs).
Moreover, an analysis of the caveats of only having fully automated vulnerability scans and manual pentests, without a semi-automatic tool covering the gap between the two, will be performed. An explanation of how such tool has been built will be delivered at the end of the paper.
Copyright © 2023–2025 ICST
