Published in

beardy.digital

Craig Godden-Payne

Nov 12, 2019

3 min read

Reflected Cross Site Scripting

Cross Site Scripting (XSS) attacks are a type of injection attack, where scripts are injected into a tusted website application. There are sub categories of XSS attack, which work very differently. Generally, an XSS attack is performed using a browser side script, with the intent to run on a different users session.

The intent of an XSS attack is to steal cookies, session tokens, or other sensitive information and divert this information to somewhere not intended. More information can be found on the OWASP website: https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)

--

More from beardy.digital

Tech Articles, Focusing on Software Development, DevOps, Cloud and UX

Read more from beardy.digital

Recommended from Medium

Mobius Project

Proctoring Software and Abusability Testing

Gabe Porter

Digital Labyrinth

Airgap Networks

An Interview with Ritesh Agrawal, CEO of Airgap Networks

Astra Security

in

ASTRA Security

PHP Website Hacked? These PHP Vulnerabilities Can Be the Cause

PHP Website hacked Expression Engine CMS Help

Prafulla Singh

Chameleon Apps making Joke of App Store vetting process

Zmanda

in

Zmanda

Cloud Storage vs Tape Storage: Understanding the Pros & Cons

Reine Odine

{UPDATE} Subway kid surf Hack Free Resources Generator

NKN

in

#NKN

NKN Monthly Report: November 2021

About Help Terms Privacy

Get the Medium app

Craig Godden-Payne

Craig Godden-Payne

Technologist who enjoys writing and working with software and infra. I write up all the things I learn as I go along to share the knowledge! beardy.digital

More from Medium

Curious

Lab: Reflected XSS in a JavaScript URL with some characters blocked

Frank Leitner

Write-up: Cross-site WebSocket hijacking @ PortSwigger Academy

Security Lit Limited

in

CodeX

HTTP Header Injection

Liam Cafearo

PortSwigger Web Security Academy Server-side topics — SQL Injection

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Knowable