Stored XSS

Stored XSS is a persistent form of cross site scripting where malicious input is stored in a database, comment, profile, ticket, message, or content field. When another user accesses the affected page, the script executes in their browser. Stored XSS is often more impactful than reflected XSS because it can affect multiple users, administrators, or internal teams without requiring repeated attacker interaction.