Explore the often-overlooked dangers of Cross-Site Styling (CSS) attacks in this 30-minute conference talk from CSSconf.eu 2013. Delve into the world of injection attacks that go beyond traditional JavaScript-based Cross-Site Scripting (XSS), and discover how CSS can be exploited to exfiltrate sensitive data, including passwords, without using any scripts. Learn about clever malicious techniques made possible through CSS and gain insights into effective mitigation strategies to protect your websites and applications from these sophisticated threats.
Overview
Syllabus
[CSSconf.eu 2013] Mike West - XSS. (No, the _other_ "S")
Taught by
JSConf