When a website thinks that a request came from the user's browser and is made by the user himself when actually the request was planted in the user's browser by a hacker, what type of attack has occurred?
A. XSS
B. insecure direct object references
C. memory leaks
D. CSRF
D
Explanation : Cross-site Request Forgery (CSRF) is an attack which causes an end user to execute unwanted actions on a web application in which he/she is currently authenticated. Unlike XSS, in CSRF the attacker exploits the website's trust of the browser rather than the other way around. The website thinks that the request came from the user's browser and is made by the user himself. Actually the request was planted in the user's browser. It usually gets there by a user following a URL that already contains the code to be injected.
You might also like to view...
How many relational operators are there?
What will be an ideal response?
Which tool in Administrative Tools should you open if you want to view messages to troubleshoot errors?
A. Task Scheduler B. System Information C. Resource Monitor D. Event Viewer
In SQL, the FROM keyword determines how records are sorted. _________________________
Answer the following statement true (T) or false (F)
For a method that accepts a parameter, what are the components of the parameter definition that must be included in the method declaration? Show an example of a method declaration with a parameter.
What will be an ideal response?