XSS
XSSالبرمجة النصية عبر المواقع
GLS-000158
Definition
An attack where malicious JavaScript is injected into a web page and runs in other users' browsers.
هجوم يُحقن فيه JavaScript ضار في صفحة ويب ويعمل في متصفحات المستخدمين الآخرين.
Why It Matters
An XSS vulnerability on 404Fault's glossary editor (if a malicious name is saved and rendered raw) could expose all admin users.
ثغرة XSS في محرر الغلوساري في 404Fault (إذا حُفظ اسم ضار وعُرض خامًا) يمكن أن تكشف جميع مستخدمي المشرف.
Full Definition
AI Builder Tips
Avoid these mistakes when using XSS:
Using dangerouslySetInnerHTML with unescaped user content
Storing auth tokens in localStorage (XSS can steal them — use HttpOnly cookies)
Sign in to unlock guided AI explanations from AI Teacher.
Generate a Prompt
Copy this prompt and use it directly with any AI model — no setup needed.
Help me build a project using XSS. Explain: 1. What is XSS and why it matters 2. The core architecture and required tools 3. Step-by-step implementation plan 4. Common mistakes to avoid: Using dangerouslySetInnerHTML with unescaped user content, Storing auth tokens in localStorage (XSS can steal them — use HttpOnly cookies) 5. Best practices and production tips