Rationale

Cross-site scripting (XSS) attacks cover a broad range of attacks where malicious HTML or client-side scripting is provided to a Web application. The Web application includes malicious scripting in a response to a user of the Web application.

  • Apex classes
  • Lightning components
  • Visualforce pages
  • Visualforce controllers

Did this answer your question?