Protecting Your Users Against Cross-site Scripting
Cross-site scripting (XSS) is one of the most common methods
hackers use to attack websites. XSS vulnerabilities permit a malicious user to
XSS is the most common publicly reported security vulnerability, and part of
every hacker’s toolkit.
What could a determined hacker do when exploiting a XSS vulnerability?
done by an attacker depends on the sensitivity of the data being handled by your
site. Some of the things hackers have done by exploiting XSS:
Spreading worms on social media sites. Facebook, Twitter and YouTube have all been successfully attacked in this way.