What is Cross-Site Scripting?
Cross-Site Scripting (XSS) is the injection of malicious scripts into a normally trusted web application.
This is possible whenever user input for example on a website is not sufficiently validated either on the client- or the server-side. These scripts contain malware and enable the hacker to a variety of attacks including the alteration of all actions the user takes on that website since the user’s browser does not know that this script can’t be trusted.
Because this script is trusted, it can access e.g. cookies or session tokens or even alter the content of an HTML Page.
Find XSS vulnerabilities now!
Register now and set up a Full Scan of your web application to find and fix existing Cross-Site Scripting vulnerabilities.
How the Crashtest Security Suite helps you
The Crashtest Security Suite discovers Cross-Site Scripting vulnerabilities within your web application and shows you where these problems exist. Additionally, our own security wiki shows you how to efficiently remediate the vulnerability. Check out the article on Cross-Site Scripting for more details!
You haven't thought about web application security at all? Do a Quick Scan to find out existing vulnerabilities!