Right guys?
You must log in or # to comment.
Yeap, that is the first thing you do for any privileged account.
It doesn’t matter if they are directly stealing cookies though.
Hmm, that is the reason you should have addons in your browser to prevent XSS, like uBlock.
uBlock prevents XSS? I didn’t know that.
It blocks bunch of JS from being executed, and if it detects XSS, it gives you a popup to inform you.
Are you thinking of NoScript? That’s what gives me the XSS popups.
