Reference documentation and code samples for the Web Security Scanner V1 API module Google::Cloud::WebSecurityScanner::V1::Xss::AttackVector.
Types of XSS attack vector.
Constants
ATTACK_VECTOR_UNSPECIFIED
value: 0
Unknown attack vector.
LOCAL_STORAGE
value: 1
The attack comes from fuzzing the browser's localStorage.
SESSION_STORAGE
value: 2
The attack comes from fuzzing the browser's sessionStorage.
WINDOW_NAME
value: 3
The attack comes from fuzzing the window's name property.
REFERRER
value: 4
The attack comes from fuzzing the referrer property.
FORM_INPUT
value: 5
The attack comes from fuzzing an input element.
COOKIE
value: 6
The attack comes from fuzzing the browser's cookies.
POST_MESSAGE
value: 7
The attack comes from hijacking the post messaging mechanism.
GET_PARAMETERS
value: 8
The attack comes from fuzzing parameters in the url.
URL_FRAGMENT
value: 9
The attack comes from fuzzing the fragment in the url.
HTML_COMMENT
value: 10
The attack comes from fuzzing the HTML comments.
POST_PARAMETERS
value: 11
The attack comes from fuzzing the POST parameters.
PROTOCOL
value: 12
The attack comes from fuzzing the protocol.
STORED_XSS
value: 13
The attack comes from the server side and is stored.
SAME_ORIGIN
value: 14
The attack is a Same-Origin Method Execution attack via a GET parameter.
USER_CONTROLLABLE_URL
value: 15
The attack payload is received from a third-party host via a URL that is
user-controllable