Definition: Cross site scripting (XSS) refers to the ability to use some of the functionality of active scripting against the user by inserting malicious code into the HTML that will run code on the user’s computer, redirect them to a site other than what they intended or steal passwords and personal information among other things.
Cross site scripting is a programming problem and not a vulnerability of any particular web browser software or web hosting server. It is up to the web site developer to ensure that user input is validated and checked for malicious code before executing it.
Also Known As: XSS
Latest posts by Tony Bradley (see all)
- Unlocking Proactive Compliance with Adobe’s Common Controls Framework - October 14, 2024
- Unlocking the Power of Continuous Threat Exposure Management - October 8, 2024
- The ReliaQuest Mindset: A Competitive Edge in Cybersecurity - October 4, 2024