CheatSheetSeries icon indicating copy to clipboard operation
CheatSheetSeries copied to clipboard
verified publisher icon OWASP

Update: Cross Site Scripting Prevention Cheat Sheet

Open zer0uno opened this issue 2 years ago • 4 comments

What is missing or needs to be updated?

Under the section "XSS Prevention Rules Summary" the table within refers to rule #1, rule #2, rule #4, rule #5, aside the fact the rule #3 is missing, which rule do they refer to?

How should this be resolved?

A better explanation of what these rules are should be given.

zer0uno avatar Oct 04 '23 19:10 zer0uno

Is it possible that these references to the rules you pointed out are a carryover from the rules that were last mentioned under the section "XSS Prevention Rules" in https://github.com/OWASP/CheatSheetSeries/blob/dace50491da52f2382965ce3f25cad3c217dede2/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.md, after which this cheat sheet underwent some major revisions?

kwwall avatar Oct 04 '23 23:10 kwwall

@zer0uno they are referring to rules under XSS Prevention Rules, I do not understand the problem here.

mackowski avatar Oct 17 '23 10:10 mackowski

@mackowski On this page there is no section titled "XSS Prevention Rules", but "XSS Prevention Rules Summary" which is the section I mentioned that points to numbered rules that I can find no matching within the page

zer0uno avatar Oct 17 '23 11:10 zer0uno

oh yes we should remove that numbers right, and maybe add links to relevant parts if the cheatsheet

mackowski avatar Nov 24 '23 08:11 mackowski

This was resolved in pull request #1258

Jeymz avatar Aug 07 '24 20:08 Jeymz

Thanks!

szh avatar Aug 07 '24 20:08 szh