Web Security 101: Cross-Site Scripting (XSS) Attacks

A hands-on beginner’s guide to what XSS attacks are and how to prevent them.

Cross-Site Scripting (XSS) vulnerabilities are one of the most dangerous web security holes that exist. In this post, we’ll see an interactive demo of XSS and learn how to protect against it.

This is the second post in my Web Security 101 series. If you’ve read my introduction to CSRF, some of the preamble below might look familiar… feel free to skip ahead a bit.