前端資安
Cross-site Scripting
Content Security Policy
Cross-Site Request Forgery
Cross-origin resource sharing
Sanitization
HTML injection
DOM clobbering
Prototype pollution
Cookie tossing
Cookie bomb
Clickjacking
MINE sniffing
Cross-site leaks
XSLeaks
Client side template injection
CSTI
Subdomain takeover
Dangling markup injection
Server Side Request Forgery
OS Command Injection
Directory Traversal
Insecure Deserialization
XML eXternal Entity
XXE
Open Redirection
Header Injection
DoS
Insecure Direct Object Reference Vulnerability
JSON Hijacking