Which of the following attack types BEST describes a client-side attack that is used to manipulate an HTML iframe with JavaScript code via a web browser?
Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end user.
The main difference between a SQL and XSS injection attack is that SQL injection attacks are used to steal information from databases whereas XSS attacks are used to redirect users to websites where attackers can steal data from them. SQL injection is data-base focused whereas XSS is geared towards attacking end users.
Credit
https://www.keirstenbrager.tech/sql-vs-xxs-injection-attacks-explained/
Heybword HTML iframe this the frame displayed in rectangular shape when a browsers opens a page .meaning this is the from end attack using web vulnerability. But in the case of SQL injection the goal is to steal information from the database using back door. Think of this way if bad guy enters the house using the main entrance that is Crossite scripting injection (xxs). However, if the bad guy enter the room using the backdoor or the basement door that is called SQL injection the purpose is to steal information from the database. So.the answer is Xss injection
This section is not available anymore. Please use the main Exam Page.SY0-501 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
MelvinJohn
Highly Voted 5 years, 3 months agoMeme_meme
Highly Voted 4 years, 10 months agofonka
Most Recent 4 years agofrededel
5 years, 3 months ago