🔍 What is XSS?

Cross-Site Scripting (XSS) allows attackers to inject malicious JavaScript into web apps.

💥 Example Attack:

Try something like: <script>alert('XSS')</script>

🛡️ How to Prevent XSS:

• Sanitize and escape all user inputs.
• Use libraries like DOMPurify.
• Enforce Content Security Policies (CSP).

📚 Learn More:

OWASP XSS Guide