Facebook F Xing Github Search Twitter YouTube LinkedIn Envelope Caret Right Check Long Arrow Right angle-left angle-right Blog landing-angriffsflaechewebseite-header Videos Info Documentation success White Papers Long Arrow Down Bars Times Bezier Curve Key Cogs Jenkins shield user-check code clipboard-check sitemap graduation-cap book books scanner-list users users-cog ciso user-secret money coins stopwatch wrench circle cx="74.965" cy="437.047" r="15"/> file-contract gdpr clipboard integrations videos

Cross-Site Scripting

What is Cross-Site Scripting?

Cross-Site Scripting (XSS) is the injection of malicious scripts into a normally trusted web application.

This is possible whenever user input for example on a website is not sufficiently validated either on the client- or the server-side. These scripts contain malware and enable the hacker to a variety of attacks including the alteration of all actions the user takes on that website since the user’s browser does not know that this script can’t be trusted.

Because this script is trusted, it can access e.g. cookies or session tokens or even alter the content of an HTML Page.

Find XSS vulnerabilities now!

Register now and set up a Full Scan of your web application to find and fix existing Cross-Site Scripting vulnerabilities.


How the Crashtest Security Suite helps you

The Crashtest Security Suite discovers Cross-Site Scripting vulnerabilities within your web application and shows you where these problems exist. Additionally, our own security wiki shows you how to efficiently remediate the vulnerability. Check out the article on Cross-Site Scripting for more details!


You haven't thought about web application security at all? Do a Quick Scan to find out existing vulnerabilities!

Customers that trust us: