ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v10 All Questions

View all questions & answers for the 312-50v10 exam
Go to Exam

Exam 312-50v10 topic 1 question 208 discussion

Actual exam question from ECCouncil's 312-50v10
Question #: 208
Topic #: 1
[All 312-50v10 Questions]

A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploited, the team wants to modify the software requirements to disallow users from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software?

  • A. Cross-site scripting vulnerability
  • B. Session management vulnerability
  • C. SQL injection vulnerability
  • D. Cross-site Request Forgery vulnerability
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by TrendMicroDLPSSucks at Aug. 18, 2020, 12:06 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
TrendMicroDLPSSucks
11 months ago
Cross-site scripting, a security exploit in which the attacker inserts malicious client-side code into webpages, has been around since the 1990s and most major websites like Google, Yahoo and Facebook have all been affected by cross-site scripting flaws at some point. Attacks exploiting XSS vulnerabilities can steal data, take control of a user's session, run malicious code, or be used as part of a phishing scam.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel