From 8b7025dbc3596e39396e75399cf7cf9920f7bd79 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Stefan=20Feje=C5=A1?= <ns.fejes.stefan@gmail.com>
Date: Tue, 17 Jul 2018 10:54:10 +0200
Subject: [PATCH] add glossary/XSS

---
 glossary/Cross-site-scripting.md | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 glossary/Cross-site-scripting.md

diff --git a/glossary/Cross-site-scripting.md b/glossary/Cross-site-scripting.md
new file mode 100644
index 000000000..f149054a8
--- /dev/null
+++ b/glossary/Cross-site-scripting.md
@@ -0,0 +1,3 @@
+### Cross-site scripting (XSS)
+
+XSS refers to client-side code injection where the attacker injects malicious scripts into a legitimate website or web application. This is often achieved when the application does not validate user input and freely injects dynamic HTML content.