- What exactly is cross site scripting?
- Why is client side validation not secure?
What exactly is cross site scripting?
Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user.
Why is client side validation not secure?