44. Cross Site Scripting (XSS) – Non Persistent Exploits user’s trust in the site Bad guy identifies a vulnerable website and sends you a link with the vulnerability in the URL You click on that link Your browser executes bad guy’s code
45. Cross Site Scripting (XSS) - Persistent Exploits user’s trust in the site Bad guy posts code on a website You request the page on the website Your browser executes bad guy’s code