Cross-Site Scripting (XSS)

Cross-Site Scripting (XSS) is a type of web security vulnerability that allows attackers to inject malicious scripts (usually JavaScript) into web pages viewed by other users.

These scripts execute in the victim's browser, leading to data theft, session hijacking, or even full account takeovers.