Cross-site Scripting (XSS)

Cross-site scripting (XSS) is a type of security vulnerability that allows an attacker to inject malicious code into a web page. This malicious code can then be executed by the victim’s browser when they visit the page. XSS attacks can be used to steal cookies, session tokens, and other sensitive information. They can also be used to deface websites, redirect users to malicious websites, and even take control of the victim’s browser.