Explain inline scripting.

697    Asked by ankur_3579 in Cyber Security , Asked on Mar 10, 2022

 I was reading a Google publication on the insecurity of currently deployed Content Security Policies (CSP Is Dead, Long Live CSP! On the Insecurity of Whitelists and the Future of Content Security Policy) To understand fully, I want to be absolutely clear of all the terminology so whilst this may sound like a simple question, the answer will help with my learning of mitigating against XSS vulnerabilities.

Answered by Anil Jha

Inline scripting is a script that is not loaded from an external file, but embedded inside HTML. For example, these are inline scripts: [removed]alert(1);[removed]  <><>><><>[><><>[><>


Your Answer