Scribd
Upload
34 views

Cross-Site Scripting: (Acronym - XSS) An Attack Technique That Forces A Web Site To Echo Client

Cross-Site Scripting (XSS) is an attack where a website echoes client-supplied data that contains malicious scripts, which are then executed by a user's browser. This allows the attacker access to the user's browser content like cookies and history. XSS targets the client rather than the server directly, using the server to deliver the malicious scripts to the end user's browser.

Uploaded by

pavan.kanti
Copyright
© © All Rights Reserved
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
34 views

Cross-Site Scripting: (Acronym - XSS) An Attack Technique That Forces A Web Site To Echo Client

Cross-Site Scripting (XSS) is an attack where a website echoes client-supplied data that contains malicious scripts, which are then executed by a user's browser. This allows the attacker access to the user's browser content like cookies and history. XSS targets the client rather than the server directly, using the server to deliver the malicious scripts to the end user's browser.

Uploaded by

pavan.kanti
Copyright
© © All Rights Reserved
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 1

Cross-Site Scripting: (Acronym XSS) An attack technique that forces a web site to echo clientsupplied data, which execute

e in a users web browser. When a user is Cross-Site Scripted, the


attacker will have access to all web browser content (cookies, history, application version, etc).
XSS attacks do not typically directly target the web server or application, but are rather aimed at
the client. The web server is merely used as a conduit for the XSS data to be presented to the
end client. See also Client-Side Scripting.

You might also like