A3:2021 | Cross Site Scripting (XSS) (6) | Cycubix Docs
PreviousA3:2021 | Cross Site Scripting (XSS) (5) | Cycubix DocsNextA3:2021 | Cross Site Scripting (XSS) (7) | Cycubix Docs
Last updated
Last updated
Attacker sends a malicious URL to the victim.
Victim clicks on the link that loads a malicious web page.
The malicious script embedded in the URL executes in the victim’s browser.
The script steals sensitive information, like the session id, and releases it to the attacker.
Victim does not realize attack occurred
