Cross-Site Scripting

Definition: Cross site scripting (XSS) refers to the ability to use some of the functionality of active scripting against the user by inserting malicious code into the HTML that will run code on the user’s computer, redirect them to a site other than what they intended or steal passwords and personal information among other things.

Cross site scripting is a programming problem and not a vulnerability of any particular web browser software or web hosting server. It is up to the web site developer to ensure that user input is validated and checked for malicious code before executing it.

Also Known As: XSS

Latest posts by Tony Bradley (see all)
cross-site scriptingdictionaryInternet glossaryxss
Tony Bradley: I have a passion for technology and gadgets--with a focus on Microsoft and security--and a desire to help others understand how technology can affect or improve their lives. I also love spending time with my wife, 7 kids, 4 dogs, 7 cats, a pot-bellied pig, and sulcata tortoise, and I like to think I enjoy reading and golf even though I never find time for either. You can contact me directly at tony@xpective.net. For more from me, you can follow me on Threads, Facebook, Instagram and LinkedIn.