Cross-site scripting (XSS)

Cross-site scripting (XSS) is a client-side code injection attack where attackers aim to execute malicious scripts in a victim's web browser by inserting malicious code into a legitimate web page or application.

The attack transpires when the victim accesses the website or application executing the malicious code.