Jump to content

Cross-site scripting

From Simple English Wikipedia, the free encyclopedia
Revision as of 19:18, 20 October 2020 by Malifex (talk | changes) (page)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Cross-site Scripting (XSS) is a client-side code injection attack. The attacker aims to execute malicious scripts in a web browser of the victim by including malicious code.

In a Cross-site Scripting attack (XSS), the attacker uses your vulnerable web page to deliver malicious JavaScript to your user. The user's browser executes this malicious JavaScript on the user's computer. Note that about one in three websites is vulnerable to Cross-site scripting.

Retrieved from "https://simple.wikipedia.org/w/index.php?title=Cross-site_scripting&oldid=7154156"