- Friday, December 7, 2007, 17:58
- php, php attack
What are cross-site scripting (XSS ) Attacks?
Cross-site scripting attacks are attacks that target the end user instead of your actual site. Vulnerable web applications that don't check or validate properly incoming data let arbitrary code to run on a client computer (such as Javascript). The end result can be anything from stealing cookie data or redirecting to a different site, to embedding a browser exploit on a page. Anything that can be done with Javascript (a lot!).
Full story
