ross-Site Scripting is also known as a client-side injection attack, which aims at executing malicious scripts on a victim’s web browser by injecting malicious code.
The following practices can prevent Cross-Site Scripting:
- Encoding special characters
- Using XSS HTML Filter
- Validating user inputs
- Using Anti-XSS services/tools