It refers to an attack means that hackers change the dynamically generated content of web pages by inputting HTML code into an input mechanism (such as a form field lacking effective verification restrictions).