Answer & Solution
Answer: Option A
Solution:
XSS (Cross-Site Scripting) is a security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users.
Q
What does XSS stand for in the context of web security?
Related Questions on Average
Which of the following HTTP methods is considered safe and idempotent, making it suitable for form submissions?
A). POST
B). GET
C). PUT
D). DELETE
Which of the following is a secure method for storing passwords in a database?
A). Hashing
B). Encryption
C). Salting
D). All of the above
What is the primary purpose of form data validation in web applications?
A). Enhancing user experience
B). Preventing security vulnerabilities
C). Optimizing server performance
D). Improving search engine ranking
Which PHP function is commonly used to check if a form field is empty?
A). empty()
B). isset()
C). is_empty()
D). is_null()
Which PHP function is commonly used to sanitize input data from a form to prevent XSS attacks?
A). htmlspecialchars()
B). htmlentities()
C). strip_tags()
D). filter_var()
Which HTTP header instructs web browsers to limit the scope of cookies to a specific domain?
A). SameSite
B). Cache-Control
C). Access-Control-Allow-Origin
D). Content-Security-Policy
What is the purpose of input validation in web forms?
A). Ensuring Data Integrity
B). Enhancing User Experience
C). Preventing XSS Attacks
D). Enforcing Password Policies
What security mechanism prevents Cross-Site Request Forgery (CSRF) attacks by generating and validating unique tokens for each form submission?
A). CSRF Token
B). Session Management
C). Secure Cookies
D). HTTPS
What is the purpose of using HTTPS (HTTP Secure) in web applications?
A). Encrypting Data
B). Authenticating Users
C). Preventing XSS Attacks
D). Optimizing Page Load Speed
Which PHP function is commonly used to sanitize input data from a form to prevent SQL injection?
A). mysqli_real_escape_string()
B). htmlspecialchars()
C). filter_var()
D). htmlentities()