Question 7An attacker sends a malicious link to subscribers of a sports news site. If someone clicks the link, a malicious script is sent to the site's server and activated during the server’s response.This is an example of what type of injection attack?1 pointReflectedSQL injectionStoredDOM-based
Question
Question 7An attacker sends a malicious link to subscribers of a sports news site. If someone clicks the link, a malicious script is sent to the site's server and activated during the server’s response.This is an example of what type of injection attack?1 pointReflectedSQL injectionStoredDOM-based
Solution
This is an example of a Reflected injection attack. In this type of attack, the malicious script is embedded in a URL and is executed when the user clicks on the malicious link. The script is then reflected off the web server, hence the name "Reflected". This is different from a Stored injection attack where the malicious script is permanently stored on the target server. SQL injection is a code injection technique that might exploit a security vulnerability occurring in the database layer of an application, and DOM-based attacks are a type of attack that occurs when an attacker is able to cause a victim's web browser to execute malicious JavaScript.
Similar Questions
An attacker injected malicious code into a website’s data storage. When a user visits a website the malicious code is retrieved and executed in their browser, their device gets infected with the malicious code.This is an example of what type of injection attack?1 分ReflectedBrute forceStoredDOM-based
Which web attack is a server-side attack? Clickjacking Cross-site request forgery SQL injection Cross-site scripting
An attacker sends a misleading email with a link containing malicious JavaScript to gain access to a user's account credentials. Which of the following web application attacks is the attacker performing?This type of question contains radio buttons and checkboxes for selection of options. Use Tab for navigation and Enter or space to select the option.optionASlowlorisoptionBXML external entityoptionCSQL injectionoptionDXSS
What type of attack involves injecting malicious code into a website to hijack a session cookie?Cross-site scripting (XSS) attacksPassword attacksPing flood attacksSQL injections
Which of the following is known as the form of attack in which hacker submits a page request on behalf of the user to a different website that may cause damage or reveal the sensitive information?ACSRFBHashCApplication controllerDNone of the above
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.