Q:5. Which of the following is true for DOM-based XSS attack ?
1.Set the HttpOnly flag in cookies
2.Ensure that session IDs are not exposed in a URL
3.payload can not be found in response
4.None of the above
Answer:- (c) payload can not be found in response.
Reason:- DOM Based XSS (or as it is called in some texts, “type-0 XSS”) is an XSS attack wherein the attack payload is executed as a result of modifying the DOM “environment” in the victim's browser used by the original client side script, so that the client side code runs in an “unexpected” manner.
Answers
Answered by
5
Answer:
3.payload can not be found in response
Explanation:
HOPE THIS HELPS YOU!!!! IF YOU LIKE THIS ANSWER PLS MARK ME AS THE BRAINLIEST !!! AND DO FOLLOW ME!!!
Answered by
0
Answer:
The correct answer is option(3) ie.
payload can not be found in response
Explanation:
DOM stands for Document Object Model. It defines the structure of the web page and XSS(Cross-site scripting) is a vulnerability by which an attacker or hacker can steal or hijack user session, and perform phishing attacks.
Whenever DOM-based XSS attack occurs it causes the payload to be not found.
#SPJ3
Similar questions