Ukraine Office: +38 (063) 50 74 707

USA Office: +1 (212) 203-8264

contact@testmatick.com

REQUEST A QUOTE

Manual Testing

Ensure the highest quality for your software with our manual testing services.

Mobile Testing

Optimize your mobile apps for flawless performance across all devices and platforms with our comprehensive mobile testing services.

Automated Testing

Enhance your software development with our automated testing services, designed to boost efficiency.

Functional Testing

Refine your application’s core functionality with our functional testing services

VIEW ALL SERVICES 

Cross Site Scripting

Cross Site Scripting (XSS) – is a type of vulnerability of interactive information systems in the web. XSS appears when user scripts fell into pages generated by the server.  The peculiarity of such attacks is that instead of a direct attack on the server, the hackers use a vulnerable server.

At the moment, XSS makes up about 15% all the detected vulnerabilities. Programmers didn’t pay attention to them for a long time, considering them not dangerous. However, this opinion is false: the data located in the pages or in HTTP- Cookie can be very vulnerable.The mechanism of XSS attack performance can be divided into active and passive.

Passive XSS is understood that the script is not stored on the server of the vulnerable website, or it just can’t be automatically performed in the victim’s browser. In the active XSS, the malicious script is stored on the server and fires in the victim’s browser while opening any page of the infected website.

Related Terms