文献--A Survey on Server-side Approaches to Securing Web Applications Q:1.如何定义XSS攻击? 2.taint-based 啥意思? 3. second-order vulnerabilities 啥意思? -------------------------------------------------------------逆水行舟,不进则退。