Cross Site Scripting (XSS)


Another example of a code injection attack. This time the adversary injects code into a web page.

Slides from class

Demo site

Code files for today:

Note: all code examples are based heavily on (or copied exactly from) code originally developed by SEED Labs.