GAQM
CPEH-001 · Question #287
CPEH-001 Question #287: Real Exam Question with Answer & Explanation
Sign in or unlock CPEH-001 to reveal the answer and full explanation for question #287. The question stem and answer options stay visible for context.
Question
During a penetration test, a tester finds that the web application being analyzed is vulnerable to Cross Site Scripting (XSS). Which of the following conditions must be met to exploit this vulnerability?
Options
- AThe web application does not have the secure flag set.
- BThe session cookies do not have the HttpOnly flag set.
- CThe victim user should not have an endpoint security solution.
- DThe victim's browser must have ActiveX technology enabled.
Unlock CPEH-001 to see the answer
You've previewed enough free CPEH-001 questions. Unlock CPEH-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.