A3 Cross-Site Scripting (XSS) XSS flaws occur whenever an application takes untrusted data and sends it to a web browser without proper validation or escaping. XSS allows attackers to execute scripts in the victim’s browser which can hijack user sessions, deface web sites, or redirect the user to malicious sites. OWASP Application Security Verification Standard – Where the Testing Guide is more of a methodology and process, the ASVS is more of a checklist of standards for testing and development. OWASP Cheat Sheet Series – Short and sweet, this collection of documents is designed to be a “first stop” in a variety of different application ...

OWASP XSS Prevention Cheat Sheet Tasks These tasks are based on the OWASP XSS Prevention cheat sheet.Number 6 is skipped as it didn't fit as a task here. The main goal of each task is to learn about how to exploit and protect against XSS in the different contexts of the cheat sheet.