« Back to Glossary Index

aka “Cross-Site Scripting”

  • Simple Explanation: A type of security vulnerability where malicious code is injected into a trusted website, potentially allowing an attacker to steal sensitive information or perform unauthorized actions.
  • Example: An attacker inserting a script into a website’s input field that executes when other users view the page, potentially stealing their login credentials.
  • Advanced Explanation: A web security vulnerability that occurs when a website allows user-supplied data to be included in web pages without proper validation or encoding, enabling attackers to inject and execute malicious scripts in users’ browsers.
  • Additional Resources: Cross-Site Scripting (XSS) – OWASP
  • Wikipedia Link: Cross-Site Scripting
« Back to Glossary Index