DOM-based XSS

DOM-based XSS occurs when malicious scripts are executed through client-side JavaScript that modifies the DOM in an unsafe way. Unlike traditional XSS, these attacks don't need to interact with the server. They typically exploit vulnerable JavaScript that processes data from unsafe sources like URL parameters. Prevention requires careful handling of user input in client-side code and proper output encoding.