What is your definition of the term “Cross-Site Scripting”
Cross site scripting is defined as the process of adding a malicious code to a genuine website so as to find out and learn more about the users web surfing habits that can be used for harmful purposes.
You maybe connected to a malicious server without your knowing or you may accidentally install malicious codes when viewing dynamically generated pages.
This can lead to some serious problems like your personal information being stolen, user settings changed without your knowing and receiving advertisements that ask you to verify your personal details from cloned sites.
Cross-site Scripting, also know as XSS is referring to a client-side code injection attack whereas an attacker has the power the run and inject malicious scripts or payload into a sound working website or we application. Cross-site Scripting is among the foremost vulnerability of websites and web applications so annoying that it makes use of unencoded user input just within the output it generates on itself.
This this deadly means, the attacker goes beyond attacking the victim directly by extending the attack via exploiting and causing vulnerability in the web application or website which the victim would visit thus using the web application or website as a medium to convey a malicious script via the victim;s browser.
