A Single Partner for Everything You Need Optiv works with more than 450 world-class security technology partners. By putting you at the center of our unmatched ecosystem of people, products, partners and programs, we accelerate business progress like no other company can.
We Are Optiv Greatness is every team working toward a common goal. Winning in spite of cyber threats and overcoming challenges in spite of them. It’s building for a future that only you can create or simply coming home in time for dinner. However you define greatness, Optiv is in your corner. We manage cyber risk so you can secure your full potential.
Breadcrumb Home Cybersecurity Dictionary XSS - Cross Site Scripting Optiv Cybersecurity Dictionary Breadcrumb Home Cybersecurity Dictionary XSS - Cross Site Scripting What is XSS - Cross Site Scripting? XSS is a computer security vulnerability normally found in web applications that allows attackers to inject client-side scripts into benign and trusted websites. A cross-site scripting vulnerability could be used by an attacker to bypass access controls such as the same-origin policy. Instead of directly targeting the application, it puts users at risk since user accounts can be compromised, Trojan horse programs activated, and page content modified, misleading users into willingly surrendering private data. Session cookies can also be exposed, letting perpetrators impersonate valid users and abuse their private accounts. There are two types of XSS. The first is stored/persistent XSS, the more damaging type, which occurs when a malicious script is injected directly into a vulnerable web application. The second is reflected XSS which involves the reflecting of malicious script off of a web application, onto a user’s browser. In this attack, the script is embedded into a link, and is only activated once that link is clicked on. Websites that allow users to share content, including blogs, social networks, video sharing platforms and message boards are frequent targets for XSS attacks. Every time the infected page is viewed, the malicious script is transmitted to the victim’s browser. Image Related Services Cyber Education AppSec Assessment AppSec Program Security Vulnerability Management Related TermsSQLi - SQL InjectionOWASP - Open Web Application Security Project Share: Contact Us
Would you like to speak to an advisor? Let's Talk Cybersecurity Provide your contact information and we will follow-up shortly. Let's Browse Cybersecurity Just looking? Explore how Optiv serves its ~6,000 clients. Show me AI Security Solutions Show me the Optiv brochure Take me to Optiv's Events page Browse all Services