Cross-site scripting (aka XSS) is the term used to describe a class of security vulnerabilities in web applications. An attacker can inject malicious scripts to perform unauthorized actions in the context of the victim’s web session. Any web application that serves documents that include data from untrusted sources could be vulnerable to XSS if the untrusted data is not appropriately sanitized. A web application that is vulnerable to XSS can be exploited in two major ways:
Stored XSS – Commonly exploited in a web application where one user enters information that’s viewed…
0 comments ↓
There are no comments yet...Kick things off by filling out the form below.
Leave a Comment