An organization has a website with a guest book feature, where visitors to the web site can input their names and comments about

Question

2 years ago

10

An organization has a website with a guest book feature, where visitors to the web site can input their names and comments about

the organization. Each time the guest book web page loads, a message box is prompted with the message "You have been P0wnd" followed by redirection to a different website. Analysis reveals that the no input validation or output encoding is being performed in the web application. This is the basis for the following type of attack?A. Denial of ServiceB. Cross-site Scripting (XSS)C. Malicious File ExecutionD. Injection Flaws

Computers and Technology

2 answers:

zepelin [54] · Answer 1 · 2022-04-03T10:58:10+03:00

Answer:

C: Malicious File Execution

Explanation:

An emmbedded file in the Landing page of the website cause the page to be automatically redirected to another source, the new page loads automatically, malicious execution of the webpage redirects the new site to another link, and makes such traffic meant for the site to be automatically turned to another website.

kozerog [31] · Answer 2 · 2022-04-03T08:30:48+03:00

kozerog [31]2 years ago

6 0

Answer:

B

Explanation: