AJAX is generally used to...

update content without reloading the full page

send data using an encrypted connection

keep state between client and server

Cross-Site Scripting

Quiz

•

Computers

•

University

•

Practice Problem

•

Hard

Thalita Vergilio

Used 56+ times

FREE Resource

10 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

Which is not an injection type of attack?

cross-site scripting

SQL injection

insecure direct object reference

LDAP injection

2.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

In cross-site scripting (XSS), malicious code executes on the client.

TRUE

FALSE

3.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

Which is NOT a type of XSS?

stored

injected

DOM-based

reflected

4.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

Reflected XSS is considered more damaging than stored XSS.

TRUE

FALSE

5.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

All but one are generally applied to user input to prevent XSS attacks.

sanitisation

filtering

encryption

escaping

6.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

What is typically stolen in a XSS attack?

hashed passwords for all users

unencrypted files

network traffic

session IDs from cookies

7.

MULTIPLE CHOICE QUESTION

10 sec • 1 pt

An attacker posts malicious XSS code in the comments section of a website. Where would this code typically run?

on the application server

on the database, when stored

on every browser that visits the page

on the database, when retrieved

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Cache memory

Quiz

•

University

10 questions

Session 2

Quiz

•

University

15 questions

Наукова вікторина

Quiz

•

University

10 questions

IoT Cloud

Quiz

•

University

15 questions

Quiz NO. 1

Quiz

•

University

10 questions

BIM30603 Quiz 1

Quiz

•

University

10 questions

Pretest BD Pert 2

Quiz

•

University

10 questions

Sessions and Cookies

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

20 questions

CompTIA Network+ - Ports and Protocols

Quiz

•

University

Cross-Site Scripting

10 questions

Which is not an injection type of attack?

In cross-site scripting (XSS), malicious code executes on the client.

Which is NOT a type of XSS?

Reflected XSS is considered more damaging than stored XSS.

All but one are generally applied to user input to prevent XSS attacks.

What is typically stolen in a XSS attack?

An attacker posts malicious XSS code in the comments section of a website. Where would this code typically run?

Sanitising user input on the server side does NOT help prevent this type of XSS attack.

AJAX is generally used to...

Which tool is used to download full webpages and their content?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers