Glossary Description

Cross-site Scripting (XSS/CSS)

Description:

CSS (Cross-Site Scripting) is a security vulnerability that potentially enables a malicious user to "inject" code into a user's session with a web site. CCS is sometime called XSS to avoid confusion with Cascade Style Sheet. Here is a detailed paper about CSS: http://sandsprite.com/Sleuth/papers/XSS-Paper.txt.

© 2003-2007 NexantiS Corporation (www.securescout.com)
SecureScout is a trademark of NexantiS
All Rights Reserved
All products names referenced herein are trademarks of their respective companies

SecureScout products are certified:
CVE Compatible
SANS TOP 20 Compatible
CVSS Compatible (Common Vulnerability Scoring System)