CompTIACompTIA
CAS-005 · Question #140
CAS-005 Question #140: Real Exam Question with Answer & Explanation
The correct answer is C: CSRF. The recommendations to use Cookie prefixes and set SameSite=strict relate directly to mitigating Cross-Site Request Forgery (CSRF) attacks by restricting how cookies are sent with cross-site requests.
Submitted by tom_us· Mar 6, 2026Security Engineering
Question
A company runs a DAST scan on a web application. The tool outputs the following recommendations: - Use Cookie prefixes. - Content Security Policy - SameSite=strict is not set. Which of the following vulnerabilities has the tool identified?
Options
- ARCE
- BXSS
- CCSRF
- DTOCTOU
Explanation
The recommendations to use Cookie prefixes and set SameSite=strict relate directly to mitigating Cross-Site Request Forgery (CSRF) attacks by restricting how cookies are sent with cross-site requests.
Community Discussion
No community discussion yet for this question.