{"id":173,"count":1,"description":"<h2 class=\"post-tile entry-title\">What is XSS Vulnerability and What Are the Ways to Protect It?<\/h2>\r\n<div class=\"entry-content\">\r\n\r\nIn this post, we are going to write about CROSS SITE SCRIPTING (XSS) (<strong><a href=\"https:\/\/avengering.com\/?s=CROSS+SITE+SCRIPTING+%28XSS%29\">XSS vulnerability<\/a>)<\/strong>\u00a0and ways to protect it.\u00a0Let's start with an example:\r\n\r\nSuppose you own a social networking website.\u00a0As you know, users' activity on these websites is mostly characterized by comments or comments.\r\n\r\nThe more users engage in publishing posts and comments, the more popular your website becomes.\u00a0Unfortunately, the malware also gets more attention from your website.\u00a0They intend to gain unauthorized access to your users' websites and information.\r\n\r\nThe attackers can send JavaScript code to the website (or inject Javascript code) by using your website's comment system.\u00a0<span style=\"font-size: 16px; font-style: normal; font-weight: 400;\">\u00a0<\/span><span style=\"font-size: 16px;\">In this case, we say that an<a href=\"https:\/\/en.wikipedia.org\/wiki\/Cross-site_scripting\"> XSS attack<\/a> has occurred.\u00a0<\/span>\r\n\r\nIf a popup with This is a test appears, it means your website is vulnerable to CROSS SITE SCRIPTING (XSS).\r\n\r\nMalicious hackers can steal cookies from other users using <strong>XSS <\/strong><strong>vulnerabilities,\u00a0<\/strong>\u00a0which can lead to session hijacking.\r\n<h3>What uses a malicious CROSS SITE SCRIPTING (XSS) vulnerability to do:<\/h3>\r\nThe XSS vulnerability allows\u00a0JavaScript\u00a0to be\u00a0executed arbitrarily.\u00a0So the severity of the damage depends on the sensitivity of the victim's website data.\r\n<ul>\r\n \t<li><strong>Playing\u00a0worm<\/strong>\u00a0(Worm)\u00a0on social networking websites.<\/li>\r\n \t<li><strong>Meeting Theft:\u00a0<\/strong>\u00a0The malicious JavaScript sends the session ID to a malicious Web site.\u00a0As a result, the saboteur can replace himself with that user.<\/li>\r\n \t<li><strong>Identity Theft<\/strong>: If a user enters important information such as credit cards, etc. into a vulnerable website, the malicious person can steal that information with malicious JavaScript.<\/li>\r\n \t<li><strong>DoS attack\u00a0<\/strong><\/li>\r\n \t<li><strong>Stealing<\/strong>\u00a0important\u00a0<strong>information<\/strong>\u00a0such as passwords<\/li>\r\n<\/ul>\r\n<\/div>","link":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/","name":"CROSS SITE SCRIPTING (XSS)","slug":"cross-site-scripting-xss","taxonomy":"category","parent":0,"meta":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.3 (Yoast SEO v23.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>CROSS SITE SCRIPTING (XSS) Archives -<\/title>\n<meta name=\"description\" content=\"What is CROSS SITE SCRIPTING (XSS) and What Are the Ways to Protect It?In this post, we are going to write about XSS vulnerability\u00a0and ways to protect it.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CROSS SITE SCRIPTING (XSS) Archives\" \/>\n<meta property=\"og:description\" content=\"What is CROSS SITE SCRIPTING (XSS) and What Are the Ways to Protect It?In this post, we are going to write about XSS vulnerability\u00a0and ways to protect it.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/\" \/>\n<meta property=\"og:image\" content=\"https:\/\/avengering.com\/wp-content\/uploads\/2019\/04\/39.138-logo-.png\" \/>\n\t<meta property=\"og:image:width\" content=\"138\" \/>\n\t<meta property=\"og:image:height\" content=\"39\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@avengering1\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"CROSS SITE SCRIPTING (XSS) Archives -","description":"What is CROSS SITE SCRIPTING (XSS) and What Are the Ways to Protect It?In this post, we are going to write about XSS vulnerability\u00a0and ways to protect it.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/","og_locale":"en_US","og_type":"article","og_title":"CROSS SITE SCRIPTING (XSS) Archives","og_description":"What is CROSS SITE SCRIPTING (XSS) and What Are the Ways to Protect It?In this post, we are going to write about XSS vulnerability\u00a0and ways to protect it.","og_url":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/","og_image":[{"width":138,"height":39,"url":"https:\/\/avengering.com\/wp-content\/uploads\/2019\/04\/39.138-logo-.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_site":"@avengering1","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"CollectionPage","@id":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/","url":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/","name":"CROSS SITE SCRIPTING (XSS) Archives -","isPartOf":{"@id":"https:\/\/avengering.com\/en\/#website"},"description":"What is CROSS SITE SCRIPTING (XSS) and What Are the Ways to Protect It?In this post, we are going to write about XSS vulnerability\u00a0and ways to protect it.","breadcrumb":{"@id":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/#breadcrumb"},"inLanguage":"en-US"},{"@type":"BreadcrumbList","@id":"https:\/\/avengering.com\/en\/category\/cross-site-scripting-xss\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/avengering.com\/en\/"},{"@type":"ListItem","position":2,"name":"CROSS SITE SCRIPTING (XSS)"}]},{"@type":"WebSite","@id":"https:\/\/avengering.com\/en\/#website","url":"https:\/\/avengering.com\/en\/","name":"Avenger IT Next Generation","description":"site web Concepcion","publisher":{"@id":"https:\/\/avengering.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/avengering.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/avengering.com\/en\/#organization","name":"Avenger It Next Generation","url":"https:\/\/avengering.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/avengering.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/avengering.com\/wp-content\/uploads\/2019\/03\/av-logo.jpg","contentUrl":"https:\/\/avengering.com\/wp-content\/uploads\/2019\/03\/av-logo.jpg","width":672,"height":156,"caption":"Avenger It Next Generation"},"image":{"@id":"https:\/\/avengering.com\/en\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/avengering\/","https:\/\/x.com\/avengering1","https:\/\/www.instagram.com\/avengeritnextgeneration\/","https:\/\/linkedin.com\/company\/avengering","https:\/\/www.pinterest.fr\/kaviani0593\/","https:\/\/www.youtube.com\/channel\/UCVwQU9Tx51ptiSG-Z9MOOTQ"]}]}},"_links":{"self":[{"href":"https:\/\/avengering.com\/en\/wp-json\/wp\/v2\/categories\/173"}],"collection":[{"href":"https:\/\/avengering.com\/en\/wp-json\/wp\/v2\/categories"}],"about":[{"href":"https:\/\/avengering.com\/en\/wp-json\/wp\/v2\/taxonomies\/category"}],"wp:post_type":[{"href":"https:\/\/avengering.com\/en\/wp-json\/wp\/v2\/posts?categories=173"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}