Day 5: Cross-Site Scripting (XSS) — When the Browser Becomes the Attacker

Introduction Cross-Site Scripting (XSS) is a client-side attack that exploits trust between a user’s browser and a web application. Unlike SQL Injection, which targets backend databases, XSS targets users directly by injecting malicious scripts into ...