Watch Pat Metheny live at the Java Jazz festival from 5.30pm on Youtube

XSS Cross Site Scripting Demonstration

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
36,636
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Jul 1, 2009

Cross-site scripting ('XSS' or 'CSS') is an attack that takes advantage of a Web site vulnerability in which the site displays content that includes un-sanitized user-provided data. For example, an attacker might place a hyperlink with an embedded malicious script into an online discussion forum. That purpose of the malicious script is to attack other forum users who happen to select the hyperlink. For example it could copy user cookies and then send those cookies to the attacker. The Script Injection video should be watched before this video for greater understanding.

Category:

Science & Technology

Tags:

License:

Standard YouTube License

  • likes, 5 dislikes

Link to this comment:

Share to:

Top Comments

  • Problem is, CSS stands for two things.

    benjabean1 1 year ago 29

  • Thanks, I'm studying for Security Plus and the books I read didn't really give any real examples I could relate with. This did it for me. Good Work

    JLewinCO 1 year ago 6

see all

All Comments (22)

Sign In or Sign Up now to post a comment!

  • @shroomboy666 y

    TheAnonrandomguy 1 week ago

  • @benjabean1 Counter Strike: Source?

    shroomboy666 1 month ago 2

  • @benjabean1 cascading style sheet and counter strike source?

    misterolichip 1 month ago

  • @bitbreaker Oh, and pardon my typos as well... I have better things to do with my time than troll videos and look to pick fights because I'm oh-so-intellectual and an arrogant bastard.

    bitbreaker 5 months ago

  • @tomm174 Hello, dumbfuck. How are you doing? It has been a year since I posted that comment, I will agree with you that I did not know as much as I do now. If you don't bother check how old comments are, how do you know a person hasn't learn whether or not they were right when they even posted the comment? Oh, and bravo with your witty little insult... Fox News. If you want any respect, I suggest you off yourself and don't bother telling anyone... trust me... they won't care.

    bitbreaker 5 months ago

  • @bitbreaker why bother talking if you don't know whether what you're saying is so or not.

    All browsers potentially have this vulnerability.

    This tutorial is explaining it to you.

    Do you think maybe some browsers know the difference between user contributed & web-designer supplied javascript ?

    You're not the only person who has ever loudly said something that's in plain contradiction to the facts (Fox News . . ). But if you want any respect I suggest you try to avoid doing it in future.

    tomm174 5 months ago

  • 2nd Problem is, This is your site. How do we know that you didn't actually make the exploit in your site? Do another site. Then I'll believe you. But when you own a Site you know your exploits so Yeah.

    rara12ify 6 months ago

  • wt hell r u guys talking about!!! = )

    dbrunetti6770 6 months ago

  • well theres nothng serious happening on my pc but ccs is making my pc lag alot

    Shady2viewer 7 months ago

  • Sometimes when I'm on Deviant Art it says "internet explorer has prevented cross site scripting" and when I'm on FIrefox or Chrome, it just puts them on my computer and I got a virus that way once. luckily I fixed it, but now I only get on DA with IE cuz it blockks it. thanks for letting me know what it is ^^

    Diggler397 9 months ago

Loading...

Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more