Hack Proof Your Asp.Net Application Part 2 (Cross Site Scripting-XSS)
Introduction -
This is part -2 of my series Secure your Asp.Net Applications. In this article, I will describe what exactly Cross site scripting (XSS) is and how hacker exploit it and how we can prevent from XSS attack.
Background:
For part-1 of this series you can check from HERE which is Secure your asp.net application from SQL Injection.
Cross-Site Scripting -
Cross-Site Scripting is kind of security exploit in which attacker inserts malicious code of his choice(Mostly script) into web page or in database, without user's knowledge .XSS in itself is a threat which is brought by the internet security weaknesses of client-side scripting languages, with HTML and JavaScript (others being VBScript, ActiveX, HTML, or Flash) as the prime culprits for this exploit.