Cookies Referrer Window name LocalStorage

Within an in-line script:

Within a script include:

SessionStorage

Within an in-line script:

Within a script include:

PostMessage

Sinks located inside a PostMessage handler missing a proper origin check.

Event triggering

This class of XSS is only triggered after an event is fired