Skip to main content

Isabelle explains what Cross Site Scripting means

In this week’s edition of JUMPSEC’s cyber security Jargon Buster, Isabelle Bearn explains what Cross Site Scripting is.

“Cross site scripting or XSS is a type of client-side attack. The attacker exploits the XSS vulnerability by injecting malicious code to the web application which will then be “served” to the website user when they visit. The users browser accepts all the code returned from the website and this enables the hacker to extract information used by the site such as cookies which can contain the users login session.”