Detailedseverity: MediumDraft

CAPEC-245XSS Using Doubled Characters

Abstraction
Detailed
Status
Draft
Severity
Medium

Description

The adversary bypasses input validation by using doubled characters in order to perform a cross-site scripting attack. Some filters fail to recognize dangerous sequences if they are preceded by repeated characters. For example, by doubling the < before a script command, (<<script or %3C%3script using URI encoding) the filters of some web applications may fail to recognize the presence of a script tag. If the targeted server is vulnerable to this type of bypass, the adversary can create a crafted URL or other trap to cause a victim to view a page on the targeted server where the malicious content is executed, as per a normal XSS attack.

Related weaknesses· 1

CWE-85

Related attack patterns· 3

CAPEC-591 (ChildOf)CAPEC-592 (ChildOf)CAPEC-588 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessDoubled Character XSS Manipulationscwe-85100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Double Encoding
CAPEC
XSS Using Invalid Characters
CWE
Doubled Character XSS Manipulations
CAPEC
XSS Using Alternate Syntax
CAPEC
XSS Through HTTP Query Strings
CAPEC
XSS Targeting HTML Attributes
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.