I am just wondering about XSS attacks. Lets say I have a normal website, but it displays a few things based on $_GET variables. The website has no login system, all users can do is browse different pages which are dynamic. In this scenario, what is the worse someone can do?
A more important question to me though is this. Say my website is in my public_html folder, within its own folder. So the url might look something like this
www.mysite.com/siteA/index.php
Lets say that siteA is vunerable to XSS. Now in public_html folder, I have different sites and forms within their own folder. So I might have
www.mysite.com/siteB/index.php
If Site A is vunerable, can they do anything with Site B?
Thanks