7 min
XSS
Cross-site Scripting (XSS) Attacks vs SQL Injection Attacks (SQLi)
A common misunderstanding in the world of Web Application Security is the
difference between the consequences of a cross-site scripting
[https://www.rapid7.com/fundamentals/cross-site-scripting/] vulnerability and
the consequences of an SQL Injection Attacks (SQLi)
[https://www.rapid7.com/fundamentals/sql-injection-attacks/]. We can even go a
step back and say the misunderstanding is on a much broader level; the
difference in consequences between a client-side exploitable vulnerability and a
ser