When a website thinks that a request came from the user's browser and is made by the user himself when actually the request was planted in the user's browser by a hacker, what type of attack has occurred?

A. XSS
B. insecure direct object references
C. memory leaks
D. CSRF


D
Explanation : Cross-site Request Forgery (CSRF) is an attack which causes an end user to execute unwanted actions on a web application in which he/she is currently authenticated. Unlike XSS, in CSRF the attacker exploits the website's trust of the browser rather than the other way around. The website thinks that the request came from the user's browser and is made by the user himself. Actually the request was planted in the user's browser. It usually gets there by a user following a URL that already contains the code to be injected.

Computer Science & Information Technology

You might also like to view...

How many relational operators are there?

What will be an ideal response?

Computer Science & Information Technology

Which tool in Administrative Tools should you open if you want to view messages to troubleshoot errors?

A. Task Scheduler B. System Information C. Resource Monitor D. Event Viewer

Computer Science & Information Technology

In SQL, the FROM keyword determines how records are sorted. _________________________

Answer the following statement true (T) or false (F)

Computer Science & Information Technology

For a method that accepts a parameter, what are the components of the parameter definition that must be included in the method declaration? Show an example of a method declaration with a parameter.

What will be an ideal response?

Computer Science & Information Technology