Topics covered

• Three types of XSS: Stored, Reflected, and DOM-based
• Stealing cookies and modifying pages via XSS
• XSS prevention techniques: HTML sanitization and entity code substitution

Who should take this unit

• Developers interested in web security
• Those who want a deep understanding of client-side web vulnerabilities

Prerequisite knowledge

• Understanding of cookies and sessions
• Basic knowledge of web development (HTML, JavaScript)
• Experience with web frameworks like Flask