Cross-site scripting (XSS) attacks cover a broad range of attacks where malicious HTML or client-side scripting is provided to a Web application. The Web application includes malicious scripting in a response to a user of the Web application.

  • Apex classes

  • Lightning components

  • Visualforce pages

  • Visualforce controllers

Did this answer your question?