html injection
HTML injection, also known as cross-site scripting (XSS), is a security vulnerability that allows attackers to inject malicious code or scripts into web pages viewed by other users. This code can manipulate the content, steal sensitive information, or execute harmful actions on the affected websites, endangering the users' privacy and security.
Requires login.
Related Concepts (22)
- buffer overflow
- clickjacking
- code injection
- code injection prevention
- command injection
- cookie theft
- cross-site request forgery (csrf)
- cross-site scripting (xss)
- distributed denial of service (ddos)
- header injection
- http response splitting
- injection attacks
- javascript injection
- ldap injection
- path traversal
- remote code execution
- server-side request forgery (ssrf)
- server-side template injection (ssti)
- session hijacking
- sql injection
- web application firewall (waf)
- xml external entity (xxe) injection