Skip to content

Commit

Permalink
Update files/en-us/web/security/attacks/xss/index.md
Browse files Browse the repository at this point in the history 
Co-authored-by: Hamish Willee <[email protected]>
  • Loading branch information
@wbamberg @hamishwillee
wbamberg and hamishwillee authored Dec 13, 2024
1 parent fa40431 commit 3234728
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion files/en-us/web/security/attacks/xss/index.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -123,7 +123,7 @@ For example, consider a blog with comments. In a case like this, the website:

1. Allows anyone to submit comments using a {{htmlelement("form")}} element
2. Stores the comments in a database
3. Includes the comments in the that the website serves to other users.
3. Includes the comments in pages that the website serves to other users.

If the comments are not sanitized, then they are potential vectors for XSS. This kind of attack is sometimes called _stored_ or _persistent_ XSS, and is particularly severe, because the infected content will be served to all users who access the page, every time they access it.

Expand Down

0 comments on commit 3234728

Please sign in to comment.