What is XSS (Cross Site Scripting) ? – A Detailed Understanding the Type of XSS


In Reflected XSS, an enemy sends out the victim a link to the target application through email, social networks, etc. When going to the target site, this link has a script ingrained within it which performs.

XSS is a very commonly exploited vulnerability type which is really extensively spread and easily detectable and likewise it is one of the important vulnerability in OWASP TOP 10.

Reflected XSS
Kept XSS

With DOM Based XSS, no HTTP request is needed, the script is injected as an outcome of customizing the DOM of the target site in the client side code in the victims internet browser and is then performed.

In Stored XSS, the assaulter is able to plant a persistent script in the target site which will execute when anybody visits it.

What is XSS( Cross Site Scripting )? An assailant can inject untrusted bits of JavaScript into your application without recognition. This JavaScript is then executed by the victim who is going to the target website. It categorized into 3 types.

Understanding XSS– Cross Site Scripting

http://test.gbhackers.com/search?q=gbhackers. Looked for < strong > gbhackers. < script > alert ( document.cookie ). Picture that we are>having an URL like this and we are browsing for gbhackers and it will reflect the and
we rely on the resource being entered in the search page, so now the untrusted part gbhackers was the inquiry string gotten in by the web browser, the assaulter can control the worth anything as they like, for an example they alter like this < script > alert( document.cookie). This is simply a basic question to popup an alert in the website, if some requested the page of aggressors