GIAC
GCIH · Question #253
GCIH Question #253: Real Exam Question with Answer & Explanation
The correct answer is D: Persistent. Persistent (stored) XSS occurs when malicious script is permanently stored on the target server and executes in every victim's browser when they load the affected page, enabling account hijacking and data theft.
Web Application Attacks & Post-Exploitation
Question
Ryan, a malicious hacker submits Cross-Site Scripting (XSS) exploit code to the Website of Internet forum for online discussion. When a user visits the infected Web page, code gets automatically executed and Ryan can easily perform acts like account hijacking, history theft etc. Which of the following types of Cross-Site Scripting attack Ryan intends to do?
Options
- ANon persistent
- BDocument Object Model (DOM)
- CSAX
- DPersistent
Explanation
Persistent (stored) XSS occurs when malicious script is permanently stored on the target server and executes in every victim's browser when they load the affected page, enabling account hijacking and data theft.
Common mistakes.
- A. Non-persistent (reflected) XSS requires the attacker to trick each individual victim into clicking a specially crafted URL that reflects the malicious script off the server in the response, rather than the script being stored and served to all visitors automatically.
- B. DOM-based XSS is a client-side vulnerability where the attack payload is executed by modifying the Document Object Model in the victim's browser using unsafe client-side JavaScript, not by storing content on the server.
- C. SAX (Simple API for XML) is an XML parsing interface and is not a category or type of Cross-Site Scripting attack.
Concept tested. Persistent stored XSS attack type identification
Reference. https://owasp.org/www-community/attacks/xss/
Topics
#persistent XSS#stored XSS#cross-site scripting#account hijacking
Community Discussion
No community discussion yet for this question.