Answer :
XSS attacks
Explanation:
- Cross site scripting is a security vulnerability. it is a client side code injection attack, the attacker tries to execute a malicious JavaScript in the internet browser of the victim. The users browser executes this script on the users computer. Almost one in three websites are vulnerable to cross site scripting.
- To prevent cross site scripting, scan your web application or website regularly, your developers should also correct the code to eliminate vulnerabilities.
- Escaping is the first method one should use to prevent XSS attacks. Escaping means whatever data an application receives should be secure before sending it to user.
- Validating input is he second method, it means one should ensure that the application renders correct data and prevents malicious data from harming the site, database and users. Blacklisting is used for this. IT disallows several predetermined characters in user input.
- Sanitizing is the third way to prevent XSS attacks. It is helpful on sites that allow HTML markup to make sure that the data which is received is not doing any harm to users or your database by cleaning the data of harmful markups.