A) A type of XSS attack where the malicious script is stored on the server and served to users.

B) A type of XSS attack where the malicious script is reflected off a web server and executed immediately.

C) A technique for compressing web content to improve loading times.

D) A protocol for securely transmitting files over the internet.

A) By storing a malicious script in the server's database.

B) By sending a crafted URL with a malicious script to a victim.

C) By encrypting data transmissions between a client and server.

D) By compressing web content to reduce load times.

A) In the server's database.

B) In the user's local storage.

C) In the server's response to the user's request.

D) In the encrypted data transmission.

Improved website performance.

Stealing cookies, session tokens, or other sensitive information.

Enhanced user experience.

Secure data transmission.

The malicious script is permanently stored on the server.

The attack is persistent and does not require user interaction.

The attack relies on the victim clicking a malicious link or performing an action.

The server encrypts all responses to prevent script execution.

Storing all user input in plain text.

Validating and encoding user inputs before including them in the server's response.

Allowing all scripts to run without restriction.

Disabling JavaScript in the browser.