The Cross Site Scripting FAQ – Includes threat analysis, examples of cross site scripting attacks, cookie theft, how to protect yourself, and how to fix the holes.
You can download it from the following link: https://packetstormsecurity.com/files/download/26487/xss-faq.txt
Source: https://packetstormsecurity.com/files/26487/xss-faq.txt.html