Why so many people use different defenitions(attack or vulneraibility) for XSS? I think that XSS is attack, that exploits insufficient filtering vulnerability. Am I right?
The answer for this question should unambiguously explain what is correct definition for XSS, with additional commenting, why people uses different definitions.