... any code that can execute on top of a web browser can exploit the users’ processing power for their own gain, without being malicious [in the traditional sense]
Imagine that you’re getting to a bus to Pettah. If you don’t pay attention to the precise detail, you might find yourself in bus to Jaffna.
... hijacking a session of a customer or an administrator of a web application — one of the results of an XSS attack — can have massive consequences on the business value of a service.
I was f☆☆☆ed at one point that being a Python 2.X developer for ages, and now had to develop a truly asynchronous http post request script to upload files to a third party service in a day. IN A FREAKING DAY!
If you are a same type of desktop computer user like me, probably you are already so tired of finding solutions for your unique crazy problems arises from time to time.