XSS vulnerabilities are even more common than SQLi issues across web applications. Generally, XSS exploits are not as troublesome as SQLi unless combined with other attack vectors. Recent clients have been interested in ensuring the attack surface of their application is not exploitable using an XSS attack / Social Engineering. codeDenver has compiled a toolset for mitigating these combined attack vectors.