Cross Site Scripting is a kind of attack which happens when malicious code is injected into an application. It affects the users of the application. User accounts may also be compromised. Users can even be misleaded into surrendering their private data and thus exposing their session cookie. The attacker can now act as a valid user and take advantage of their private accounts
Cross Site Scripting can be classified into two namely Stored and Reflected XSS
It can also be called as Persistent XSS . This is more devastating than the other one. It involves reflecting malicious scripts off a web application onto a user’s browser. A vulnerability is located in a web application and malicious script will be injected into the same. It mainly targets websites that allow users to share content which includes blogs , social networks, video sharing platforms etc.