XSS (Cross-Site-Scripting)

XSS (Cross-Site Scripting) ist eine Sicherheitslücke, bei der Angreifer bösartigen Code in Websites einschleusen, um Nutzerdaten zu stehlen oder unerwünschte Aktionen im Browser der Opfer auszuführen.

Dies geschieht häufig durch das Einfügen von JavaScript-Code infielder für Benutzereingaben, die von der Website nicht ausreichend überprüft werden. Wenn ein Opfer dann die infizierte Seite besucht, wird der eingeschleuste Code im Browser des Opfers ausgeführt. Dies kann dazu führen, dass sensible Informationen gestohlen oder unerwünschte Aktionen im Namen des Opfers ausgeführt werden, wie das Ändern von Kontoinformationen. Es gibt verschiedene Arten von XSS-Angriffen, darunter gespeichertes XSS, reflektiertes XSS und DOM-basiertes XSS, die jeweils unterschiedliche Angriffsszenarien nutzen.

A

Affiliate Marketing

Ahrefs

AJAX (Asynchronous JavaScript and XML)

Alt Key

Analytics

Apache Webserver

API (Application Programming Interface)

ASCII (American Standard Code For Information Interchange)

Authority

B

Backend

Backlinks

Blog

Bot

Breadcrumb Navigation

Browser

C

Cache

Call To Action (CTA)

CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart)

CDN (Content Delivery Network)

CGI (Common Gateway Interface)

Click-through Rate (CTR)

Client

CMS (Content Management System)

Content Marketing

Conversion Rate

CSS (Cascading Style Sheets)

Customer Relationship Management (CRM)

D

Database

Debugger

Dedicated Hosting

DNS (Domain Name System)

DOM (Document Object Model)

DoS (Denial of Service) Attack

Dynamic Content

E

Elementor

Email Marketing Encryption

Encryption Algorithm

End-to-End Testing

ES6 (ECMAScript 6)

ETag (Entity Tag)

ETL (Extract, Transform, Load)

Exit Page

F

Favicon

File Compression

Flexbox

Footer

Framework

FTP (File Transfer Protocol)

G

Google Analytics

GTmetrix

GUI (Graphical User Interface)

H

Hacking

Hamburger Menü

Header

Hosting

HTML (Hypertext Markup Language)

HTTP (Hypertext Transfer Protocol)

HTTPS (Hypertext Transfer Protocol Secure)

I

IndexedDB

Information Architecture

Internet

ISP (Internet Service Provider)

J

Jamstack

Jasmine

Java

JDK (Java Development Kit)

Jekyll

Jest

Jitter

JPEG (Joint Photographic Experts Group)

jQuery

JSON (JavaScript Object Notation)

JSONP

JSP (JavaServer Pages)

JSX (JavaScript XML)

JUnit

JWT (JSON Web Token)

K

Keyword

Keyword Density

KPIs (Key Performance Indicators)

L

LAMP (Linux, Apache, MySQL, PHP)

Latency

Link

Linux

Load Time

Long-tail Keywords

M

Machine Learning

Malware

Meta Description

Meta Tags

Metadata

Mobile Optimization

MySQL

N

Namespace

Natural Language Processing

NFS (Network File System)

Nginx

Node.js

Nonce (Number used once)

NPM (Node Package Manager)

Nuxt.js

O

OAuth

Object Detection

Observer Pattern

OGP (Open Graph Protocol)

Online Marketing

OOP (Object-Oriented Programming)

Open Graph Protocol

Open Rate

Organic Traffic

ORM (Object-Relational Mapping)

Overlay

Query

P

Page Rank

PDF (Portable Document Format)

Perl

Phishing

PHP (Hypertext Preprocessor)

Pop-up Ad

Protocol

Q

QName

QoS (Quality of Service)

Query

Query

Query Execution

Query Optimization

Queue

Quick Response (QR)

Quota

R

React

Reciprocal Link

Redirect

Redis

Responsive Design

Router

RSS Feed

Ruby

S

Sandbox

Second Level Domain (SLD)

SEO (Search Engine Optimization)

Server

Server-Side-Scripting

Session

Site Map

SSL (Secure Sockets Layer)

Subdomain

T

TCP/IP (Transmission Control Protocol)

Theme

TLS (Transport Layer Security)

Top-Level Domain (TLD)

U

UI (User Interface)/ UX

Unix

Update

Uptime

URL (Uniform Resource Locator)

Usability

User Experience Design (UXD)

UTF-8

UUID (Universally Unique Identifier)

V

V8 Engine

Varnish

VCS (Version Control System)

Viewport

Virtual Machine

VPN (Virtual Private Network)

Vue.js

W

Webdesign

WebP

Webserver

Website

Website Builder

Widget

WordPress

World Wide Web (WWW)

WYSIWYG (What You See Is What You Get)

X

X-Content-Type-Options

X-DNS-Prefetch-Control

X-Forwarded-For

X-Frame-Options

XAML

Xcode

XHTML (Extensible Hypertext Markup Language)

XLL (XML Linking Language)

XML (Extensible Markup Language)

XPath

XPCOM

XSL (Extensible Stylesheet Language)

XSLT (Extensible Stylesheet Language Transformations)

XSS (Cross-Site-Scripting)

Y

Yahoo! Directory

YAML

Yandex

Yarn

YesScript

Yield Management

Yoast SEO

YSlow

Z

Z-Index

Zero-Day

ZIP (Zipped File)

0

1

2

2FA (Zwei-Faktor-Authentifizierung)

3

302-Weiterleitung

4

404 (page not found)

404-Seite

5

6

7

8

9