Multiple Choice
Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?
A) The victim user must open the malicious link with an Internet Explorer prior to version 8.
B) The session cookies generated by the application do not have the HttpOnly flag set.
C) The victim user must open the malicious link with a Firefox prior to version 3.
D) The web application should not use random tokens.
Correct Answer:
Verified
Correct Answer:
Verified
Q4: A hacker, who posed as a heating
Q5: ABC bank, a UK-based bank hired Anthony,
Q6: Jackson, a social media editor for Early
Q7: An organization has deployed a web application
Q8: A common cryptographical tool is the use
Q10: When comparing the testing methodologies of Open
Q11: Which of the following tools would be
Q12: Jacob is a penetration tester at TechSoft
Q13: To reduce the attack surface of a
Q14: While testing the company's web applications, a