# Week 4 - Finding XSS ## Finding XSS Vulnerabilities It’s officially week 4 of the Web App hacking series! Today’s tip involves finding Cross-Site Scripting vulnerabilities.\ \ Many popular Automated Scanners inject payloads similar to `“>` throughout the application. This will turn up some low hanging fruit but will sometimes miss Stored XSS vulns. Applications often block common payloads containing `