Despite all initiatives for secure software development, cross-site scripting, or XSS gaps for short, are still widespread.