What information can an attacker steal using XSS?
The attackers can steal the session ID of a valid user using XSS. The session ID is very valuable because it is the secret token that the user presents after login as proof of identity until logout. If the session ID is stored in a cookie, the attackers can write a script which will run on the user’s browser, query the value in the cookie and send it to the attackers. The attackers can then use the valid session ID to browse the site without logging in. The script could also collect other information from the page, including the entire contents of the page.
Related Questions
- If the defending units in a fortified space consist only of Ottoman cavalry, does the attacker roll one die for every attacking unit, or are his rolls halved?
- The "Rule of 16" makes high-resistance characters almost immune to resisted spells, no matter how skilled the attacker is. What gives?
- What information can an attacker steal using XSS?
