Websites are vulnerable to various types of attacks. The most common type of attack is called Cross Site Scripting or XSS. An XSS is a malicious markup script that enters in the web page that is being viewed by other users. If you do not prevent XSS from happening to your site, the script will be stored in the system and on the rendered pages. Depending on the script, it can cause damage to your website like annoying pop up ads, customer credentials getting stolen, and accessed to stored cookies. That is why it is important for you, as an ASP.NET Developer to prevent these attacks.
This post will describe what is XSS, how it works, and how to prevent it from happening to your site.
Read the rest of the post here:Â http://www.codeguru.com/csharp/.net/net_asp/preventing-cross-site-scripting-attacks-in-asp.net-mvc-4.htm