Cross-site Scripting (XSS) refers to client-side code injection attack wherein an attacker can execute malicious scripts (also commonly referred to as a malicious payload) into a legitimate website or web application.

These three letters stand for confidentiality, integrity, and availability, otherwise known as the CIA triad.

Clickjacking is an attack that tricks a user into clicking a webpage element which is invisible or disguised as another element