Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.
This lesson covers abbreviated cross site scripting flaws which occur when untrusted data is taken and sent to a web browser without proper validation and then escapes; which then executes script in the browser and causes damage. Cross site scripting is the most prominent web security flaw. This lesson discusses three types of cross site scripting: *Stored *Reflected *DOM (client side) The instructor gives participants sample cross site scripting vulnerable code samples of no input validation and reflective types and also cites the cross site scripting case study known as Samy is My Hero which succeeded in hacking more than one million users online.