Kiểm thử lỗ hổng XSS trên các ứng dụng web
June 14 2018
Trung NguyenHacker. Builder. Educator. On a mission to make the internet safer.
About the author
Trung NguyenHacker. Builder. Educator. On a mission to make the internet safer. Hacker. Builder. Educator. On a mission to make the internet safer.
Stay up to dateGet the latest threat intelligence, cybersecurity reports from CyStack delivered to your inbox
{"success":true,"head":"<title>Kiểm thử lỗ hổng XSS trên các ứng dụng web - CyStack Blog</title>\n<meta name=\"description\" content=\"Cùng chúng tôi xem xét một số ý tưởng về kiểm thử thủ công và sử dụng các công cụ kiểm thử lỗ hổng XSS tự động trên các ứng dụng web\"/>\n<meta name=\"robots\" content=\"nofollow, noindex\"/>\n<meta property=\"og:locale\" content=\"en_US\" />\n<meta property=\"og:type\" content=\"article\" />\n<meta property=\"og:title\" content=\"Kiểm thử lỗ hổng XSS trên các ứng dụng web - CyStack Blog\" />\n<meta property=\"og:description\" content=\"Cùng chúng tôi xem xét một số ý tưởng về kiểm thử thủ công và sử dụng các công cụ kiểm thử lỗ hổng XSS tự động trên các ứng dụng web\" />\n<meta property=\"og:url\" content=\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/\" />\n<meta property=\"og:site_name\" content=\"CyStack Blog\" />\n<meta property=\"article:author\" content=\"CEO@CyStack\" />\n<meta property=\"article:tag\" content=\"CyStack Security\" />\n<meta property=\"article:tag\" content=\"lỗ hổng xxs\" />\n<meta property=\"article:tag\" content=\"ứng dụng web\" />\n<meta property=\"article:tag\" content=\"vi\" />\n<meta property=\"article:section\" content=\"Đánh giá bảo mật\" />\n<meta property=\"og:updated_time\" content=\"2026-05-06T18:35:38+07:00\" />\n<meta property=\"og:image\" content=\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\" />\n<meta property=\"og:image:secure_url\" content=\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\" />\n<meta property=\"og:image:width\" content=\"574\" />\n<meta property=\"og:image:height\" content=\"536\" />\n<meta property=\"og:image:alt\" content=\"lỗ hổng XSS\" />\n<meta property=\"og:image:type\" content=\"image/jpeg\" />\n<meta property=\"article:published_time\" content=\"2018-06-14T18:16:15+07:00\" />\n<meta property=\"article:modified_time\" content=\"2026-05-06T18:35:38+07:00\" />\n<meta name=\"twitter:card\" content=\"summary_large_image\" />\n<meta name=\"twitter:title\" content=\"Kiểm thử lỗ hổng XSS trên các ứng dụng web - CyStack Blog\" />\n<meta name=\"twitter:description\" content=\"Cùng chúng tôi xem xét một số ý tưởng về kiểm thử thủ công và sử dụng các công cụ kiểm thử lỗ hổng XSS tự động trên các ứng dụng web\" />\n<meta name=\"twitter:image\" content=\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\" />\n<meta name=\"twitter:label1\" content=\"Written by\" />\n<meta name=\"twitter:data1\" content=\"Trung Nguyen\" />\n<meta name=\"twitter:label2\" content=\"Time to read\" />\n<meta name=\"twitter:data2\" content=\"6 minutes\" />\n<script type=\"application/ld+json\" class=\"rank-math-schema\">{\"@context\":\"https://schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https://blog.cystack.org/#organization\",\"name\":\"CyStack\",\"url\":\"https://blog.cystack.org\"},{\"@type\":\"WebSite\",\"@id\":\"https://blog.cystack.org/#website\",\"url\":\"https://blog.cystack.org\",\"name\":\"CyStack\",\"publisher\":{\"@id\":\"https://blog.cystack.org/#organization\"},\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\",\"url\":\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\",\"width\":\"574\",\"height\":\"536\",\"inLanguage\":\"en-US\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":\"1\",\"item\":{\"@id\":\"https://blog.cystack.org\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"position\":\"2\",\"item\":{\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/\",\"name\":\"Ki\\u1ec3m th\\u1eed l\\u1ed7 h\\u1ed5ng XSS tr\\u00ean c\\u00e1c \\u1ee9ng d\\u1ee5ng web\"}}]},{\"@type\":\"WebPage\",\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/#webpage\",\"url\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/\",\"name\":\"Ki\\u1ec3m th\\u1eed l\\u1ed7 h\\u1ed5ng XSS tr\\u00ean c\\u00e1c \\u1ee9ng d\\u1ee5ng web - CyStack Blog\",\"datePublished\":\"2018-06-14T18:16:15+07:00\",\"dateModified\":\"2026-05-06T18:35:38+07:00\",\"isPartOf\":{\"@id\":\"https://blog.cystack.org/#website\"},\"primaryImageOfPage\":{\"@id\":\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\"},\"inLanguage\":\"en-US\",\"breadcrumb\":{\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/#breadcrumb\"}},{\"@type\":\"Person\",\"@id\":\"https://blog.cystack.org/author/trungnh/\",\"name\":\"Trung Nguyen\",\"url\":\"https://blog.cystack.org/author/trungnh/\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https://secure.gravatar.com/avatar/5e1e19d9b81295eeafdbc4175f18cc5b99a688411b0b5a2189c63881dff568b1?s=96&d=mm&r=g\",\"url\":\"https://secure.gravatar.com/avatar/5e1e19d9b81295eeafdbc4175f18cc5b99a688411b0b5a2189c63881dff568b1?s=96&d=mm&r=g\",\"caption\":\"Trung Nguyen\",\"inLanguage\":\"en-US\"},\"sameAs\":[\"CEO@CyStack\"],\"worksFor\":{\"@id\":\"https://blog.cystack.org/#organization\"}},{\"@type\":\"BlogPosting\",\"headline\":\"Ki\\u1ec3m th\\u1eed l\\u1ed7 h\\u1ed5ng XSS tr\\u00ean c\\u00e1c \\u1ee9ng d\\u1ee5ng web - CyStack Blog\",\"keywords\":\"l\\u1ed7 h\\u1ed5ng XSS\",\"datePublished\":\"2018-06-14T18:16:15+07:00\",\"dateModified\":\"2026-05-06T18:35:38+07:00\",\"author\":{\"@id\":\"https://blog.cystack.org/author/trungnh/\",\"name\":\"Trung Nguyen\"},\"publisher\":{\"@id\":\"https://blog.cystack.org/#organization\"},\"description\":\"C\\u00f9ng ch\\u00fang t\\u00f4i xem x\\u00e9t m\\u1ed9t s\\u1ed1 \\u00fd t\\u01b0\\u1edfng v\\u1ec1 ki\\u1ec3m th\\u1eed th\\u1ee7 c\\u00f4ng v\\u00e0 s\\u1eed d\\u1ee5ng c\\u00e1c c\\u00f4ng c\\u1ee5 ki\\u1ec3m th\\u1eed l\\u1ed7 h\\u1ed5ng XSS t\\u1ef1 \\u0111\\u1ed9ng tr\\u00ean c\\u00e1c \\u1ee9ng d\\u1ee5ng web\",\"name\":\"Ki\\u1ec3m th\\u1eed l\\u1ed7 h\\u1ed5ng XSS tr\\u00ean c\\u00e1c \\u1ee9ng d\\u1ee5ng web - CyStack Blog\",\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/#richSnippet\",\"isPartOf\":{\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/#webpage\"},\"image\":{\"@id\":\"https://s.cystack.net/resource/home/content/05143733/HC3ACnh-E1BAA3nh-2.-VC3AD-dE1BBA5-vE1BB81-bE1BAA3ng-tC3ADnh-sE1BBAD-dE1BBA5ng-trong-thE1BBAD-nghiE1BB87m-lE1BB97-hE1BB95ng-XSS.jpg\"},\"inLanguage\":\"en-US\",\"mainEntityOfPage\":{\"@id\":\"https://blog.cystack.org/vi/blog/2018/06/14/kiem-thu-lo-hong-xss-tren-cac-website/#webpage\"}}]}</script>\n"}
