Q
Which HTTP header instructs web browsers to limit the scope of cookies to a specific domain?

Answer & Solution

Answer: Option A
Solution:
The SameSite attribute in HTTP headers instructs web browsers to restrict cookie sharing to the same site, helping prevent CSRF and XSS attacks.
Related Questions on Average

Which PHP function is commonly used to sanitize input data from a form to prevent SQL injection?

A). mysqli_real_escape_string()

B). htmlspecialchars()

C). filter_var()

D). htmlentities()

Which PHP function is used to generate a random CSRF token for form submissions?

A). bin2hex()

B). uniqid()

C). md5()

D). openssl_random_pseudo_bytes()

What is the primary purpose of form data validation in web applications?

A). Enhancing user experience

B). Preventing security vulnerabilities

C). Optimizing server performance

D). Improving search engine ranking

What is the purpose of session management in web applications?

A). Maintaining User State

B). Encrypting Data

C). Preventing SQL Injection

D). Validating Form Data

Which PHP function is commonly used to check if a form field is empty?

A). empty()

B). isset()

C). is_empty()

D). is_null()

What is the purpose of using prepared statements when interacting with databases in PHP?

A). Preventing SQL Injection

B). Improving Performance

C). Encrypting Data

D). Enforcing Data Integrity

Which of the following HTTP methods is considered safe and idempotent, making it suitable for form submissions?

A). POST

B). GET

C). PUT

D). DELETE

What does XSS stand for in the context of web security?

A). Cross-Site Scripting

B). XML Secure Socket

C). External Server Session

D). Cross-Site Sanitization

What security mechanism prevents Cross-Site Request Forgery (CSRF) attacks by generating and validating unique tokens for each form submission?

A). CSRF Token

B). Session Management

C). Secure Cookies

D). HTTPS

Which of the following is a best practice for preventing SQL Injection when executing SQL queries in PHP?

A). Use Parameterized Queries

B). Store Passwords in Plain Text

C). Use addslashes() Function

D). Disable Error Reporting