<h2 id="heading-1csrf-cross-site-request-forgery">1.CSRF (cross site request forgery):</h2>
<p>on the behalf of the browser where user is authenticated making new request to the site from that browser</p>
<p><img src="https://cdn.hashnode.com/res/hashnode/image/upload/v1741412058510/ddb8c0b5-b9ea-4832-b3e1-a10faf874a2a.png" alt class="image--center mx-auto" /></p>
<h2 id="heading-2cross-site-scripting-xss">2.CROSS SITE SCRIPTING (XSS);</h2>
<p>it allows useers to put the malicous script into the web page or website</p>
<h2 id="heading-stored-xss">Stored xss:</h2>
<p>it allows to insert the script in the db</p>
<h2 id="heading-reflected-xss">reflected xss:</h2>
<h2 id="heading-dom-xss">Dom Xss:</h2>
<h2 id="heading-3cors">3.CORS:</h2>
<p>It allows to accepts the request from the mentioned domain</p>
<h2 id="heading-4sql-innjection">4.SQL INNJECTION:</h2>
<p>it allows to inject the sql query to the website and manipluate the data</p>


## 1.CSRF (cross site request forgery):

on the behalf of the browser where user is authenticated making new request to the site from that browser

![](https://cdn.hashnode.com/res/hashnode/image/upload/v1741412058510/ddb8c0b5-b9ea-4832-b3e1-a10faf874a2a.png align="center")

## 2.CROSS SITE SCRIPTING (XSS);

it allows useers to put the malicous script into the web page or website

## Stored xss:

it allows to insert the script in the db

## reflected xss:

## Dom Xss:

## 3.CORS:

It allows to accepts the request from the mentioned domain

## 4.SQL INNJECTION:

it allows to inject the sql query to the website and manipluate the data

Secure coding in Springboot underAttack:

1.CSRF (cross site request forgery):

2.CROSS SITE SCRIPTING (XSS);

Stored xss:

reflected xss:

Dom Xss:

3.CORS:

4.SQL INNJECTION: