EC-Council
312-50V9 · Question #44
312-50V9 Question #44: Real Exam Question with Answer & Explanation
Sign in or unlock 312-50V9 to reveal the answer and full explanation for question #44. The question stem and answer options stay visible for context.
Question
Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?
Options
- AThe victim user must open the malicious link with an Internet Explorer prior to version 8.
- BThe session cookies generated by the application do not have the HttpOnly flag set.
- CThe victim user must open the malicious link with a Firefox prior to version 3.
- DThe web application should not use random tokens.
Unlock 312-50V9 to see the answer
You've previewed enough free 312-50V9 questions. Unlock 312-50V9 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.