Dark Mode
Capec-245 Detail
XSS Using Doubled Characters
Detailed Software Software Software Typical Severity: Medium
Parents: 588 591 592
The adversary bypasses input validation by using doubled characters in order to perform a cross-site scripting attack. Some filters fail to recognize dangerous sequences if they are preceded by repeated characters. For example, by doubling the < before a script command, (<