Last Updated on August 1, 2021 by Admin 2
Which cross-site scripting attack is sometimes called persistent?
- reflected
- stored
- directed
- DOM based
Explanation:
A stored XSS attack is one in which the injected script is stored in the server and received from the server by the user device. Cross-site scripting (XSS) poses the most danger when a user accesses a financial organization’s site using his or her login credentials. The problem is not that the hacker will take over the server. It is more likely that the hacker will take over the client’s session. This will allow the hacker to gain information about the legitimate user that is not publicly available. To prevent XSS, a programmer should validate input to remove hypertext. You can mitigate XSS by preventing the use of HTML tags or JavaScript image tags.
A stored XSS attack is one in which the injected script is stored in the server and received from the server by the user device. Cross-site scripting (XSS) poses the most danger when a user accesses a financial organization’s site using his or her login credentials. The problem is not that the hacker will take over the server. It is more likely that the hacker will take over the client’s session. This will allow the hacker to gain information about the legitimate user that is not publicly available. To prevent XSS, a programmer should validate input to remove hypertext. You can mitigate XSS by preventing the use of HTML tags or JavaScript image tags.
A reflected or non-persistent attack is one that is reflected off the web server and not stored on the server.
Directed is not a term used to describe cross site scripting attacks.
Objective: Attack Methods
Sub-Objective: Describe these web application attacks: SQL injection, Command injections, Cross-site scripting
Subscribe
Login
0 Comments