Cross-site scripting contexts

PreviousDOM-based XSSNextCross-site request forgery (CSRF)