Software Testing Portal

In the computer science world, XSA better known as Cross-Server Attack is a networking security intrusion method which allows for a malicious attacker to compromise security over a website or service on a server by using implemented services on the server that may not be secure.

In general, XSA is demonstrated against websites, and sometimes it can be against other services that a server withholds.


  • 1 Basics
  • 2 History
  • 3 External links
  • 4 See also


XSA is a method that allows for a malicious client to use services that a remote server implements in order to attack another service on the same server or network.

Most website hosting companies that offer hosting for large or even little amounts of separate websites are vulnerable to this method of attack, because of the amount of access services such as PHP and the webserver itself give to a client that allows the client to access other website configurations, files, passwords and the like.


The term XSA was first coined by DeadlyData, a prominent hacker during the early 2000's, over a voice communications software called TeamSpeak.

It was then used further in the community and now supports for most of the methods and subsets of the method that give both hackers and malicious based clients the terminology to attack websites using software that is located on the same server.

No comments: