There are different types of XSS; the most basics are as follows:

• Reflected XSS
• Stored XSS
• DOM-based XSS

We will describe all of them in detail during this chapter, but in the bug bounty hunter forums, it is possible to find other kind of XSS, such as these:

• Blind XSS
• Flash-based XSS
• Self XSS

We will also review them. Although they are part of the main XSS types (reflected, stored, or DOM-based), there are little variations that are important to know in order to write good reports, which expand support to the vulnerability that we are reporting.