The security community has been submitting Cross-Site Scripting (XSS) vulnerabilities for a long time, but despite its prevalence, XSS-fatigue has become a phenomenon where the industry has written off XSS as low-hanging fruit due to its longevity and the standardization of JavaScript pop-up or prompt box exploits. However, in reality, XSS is still a highly impactful vulnerability used in various exploit frameworks, including ransomware attacks, nation-state attacks, and more. Bugcrowd's classifications of XSS have shown that these vulnerabilities can have significant impacts, such as account takeover via session hijacking, full password reset, privilege escalation, remote code execution, and control over internal networks. Despite the perceived low-hanging fruit nature of XSS, these examples demonstrate its real-world impact and importance in the security community.