Table of contentsClick link to navigate to the desired location
This content has been automatically translated from Ukrainian.
Cross-Site Scripting (XSS) is a type of attack on web application security, where an attacker injects JavaScript code into a web page or web application, which is then executed in the user's browser. An XSS attack occurs when a web application does not properly handle input data and allows it to be executed in the context of the user viewing the page. There are three main types of XSS.
Stored XSS
The malicious code is stored on the server and displayed to users who view a specific page.
Reflected XSS
The malicious code is added to the URL and sent to the server, which outputs it in response. Users are affected when they click on such links.
DOM-based XSS
An attack where the malicious code is executed in the browser itself, usually by modifying the DOM structure of the page using JavaScript.
This post doesn't have any additions from the author yet.
