XSS
Cross-Site Scripting
Domain 2: Threats & Vulnerabilities
Web vulnerability where attackers inject malicious scripts into pages viewed by other users. Types: Stored, Reflected, DOM-based.
Exam Tip
XSS prevention: Output encoding, input validation, Content Security Policy (CSP).