GAQM
CPEH-001 · Question #271
CPEH-001 Question #271: Real Exam Question with Answer & Explanation
Sign in or unlock CPEH-001 to reveal the answer and full explanation for question #271. The question stem and answer options stay visible for context.
Question
Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?
Options
- AThe victim user must open the malicious link with an Internet Explorer prior to version 8.
- BThe session cookies generated by the application do not have the HttpOnly flag set.
- CThe victim user must open the malicious link with a Firefox prior to version 3.
- DThe web application should not use random tokens.
Unlock CPEH-001 to see the answer
You've previewed enough free CPEH-001 questions. Unlock CPEH-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.