========= Auto-Patching DOM XSS =========

  1. "We study dynamic code evaluation practices on nearly a quarter million URLs crawled starting from the the Alexa Top 1000 websites."
  2. "To remedy this, we propose a technique to generate secure patches that replace unsafe string interpolation with safer code that programmatic DOM construction techniques"
  3. "The root cause of DOM-based XSS vulnerabilities is unsafe software engineering or coding practices — specifically, the use of unsafe string interpolation in dynamic code evaluation constructs."
  4. ""
  5. ""
  6. ""
  7. ""
  8. ""
  9. ""
  10. ""
  11. ""
  12. ""
  13. ""