This site utilizes JavaScript to function correctly. Looks like it's disabled on your browser. Please enable it for your best experience.

For instructions on enabling JavaScript, click here

Skip to main content

Just Host Web Hosting Help

Preventing Cross-Site Scripting (XSS)

What is it?

Cross-Site Scripting, or XSS, is a type of attack used by hackers to control the content of your web pages. Hackers will insert a piece of code into your site, usually through an input field such as a search box, user ID, or Name/Address box. If your website is vulnerable to this type of attack, the hacker can control the content of your page, including the user's cookies or session variables.

What is the impact?

Hackers use this type of attack to trick your visitors into providing personal data. Since visitors believe they are providing this information to your site, they are likely to provide sensitive information to hackers, since they trust your business. Hackers use information collected, such as user names, passwords, credit card information, etc. to carry out identity theft and other criminal activities.

How does SiteLock protect me?

SiteLock's patent-pending 360-degree scan technology tests each input box on your website to ensure that they are not vulnerable to this type of attack. We verify the security of each input box on your website by inserting code in the way hackers would. Instead of taking over your page, though, we simply use harmless test procedures.

What can I do about it?

Make sure any applications you use are kept up-to-date and limit the use of third-party plug-in's where possible as they can be a source of many issues and may be updated less frequently or created by unscrupulous publishers. Use a website scanning service that features XSS scripting scans, such as SiteLock. If you are writing your own code, be sure to validate your input fields for special characters and ensure that the settings for your code are frequently updated and hardened for security. You can also take advantage of SiteLock's Expert Services team to correct any issues we identify in our scans.

Knowledgebase Article 31,105 views bookmark tags: sitelock


Was this resource helpful?

Did this resolve your issue?


Please add any other comments or suggestions about this content:





Recommended Help Content

This article will explain the benefits of SiteLock for small businesses.
Knowledgebase Article 47,493 views tags: sitelock

This article will explain the benefits of SiteLock in regards to application scanning.
Knowledgebase Article 25,500 views tags: sitelock

This article will explain the benefits of SiteLock in regards to virus scanning.
Knowledgebase Article 27,172 views tags: sitelock

Related Help Content

This article will explain the benefits of SiteLock in regards to SQL injections.
Knowledgebase Article 29,626 views tags: sitelock

This article will explain the benefits of SiteLock in regards to reputation monitoring.
Knowledgebase Article 23,433 views tags: sitelock

This article will explain how and when to contact SiteLock for support.
Knowledgebase Article 58,680 views tags: security sitelock

This article will explain what to do when SiteLock finds a vulnerability.
Knowledgebase Article 27,420 views tags: sitelock

This article will explain how to install the SiteLock Trust Seal.
Knowledgebase Article 72,559 views tags: sitelock

This article will explain how to order SiteLock
Knowledgebase Article 56,089 views tags: security sitelock

This article will explain the process of verifying a domain and account information for a SiteLock account.
Knowledgebase Article 73,603 views tags: security sitelock

This article explains how to setup a SiteLock FTP account.
Knowledgebase Article 44,437 views tags: ftp setup sitelock

** Google ad credits are only available to customers in the United States, Canada, and the United Kingdom at this time.

¹ VAT (Value Added Tax) is not included in our advertised price and will be charged separately and itemized on invoices and billing information. Standard VAT rates based on EU Member State regulations may apply. Learn more.