nerdexam
ExamsPT0-001Questions#190
CompTIA

PT0-001 · Question #190

PT0-001 Question #190: Real Exam Question with Answer & Explanation

The correct answer is A: XSS injection. The correct answer is A, XSS injection (Cross-Site Scripting injection). XSS injection is the broad, general category of attack where an attacker injects malicious scripts (typically JavaScript) into input fields of a web application. The other options describe specific subtypes:

Question

While reviewing logs, a web developer notices the following user input string in a field: Which of the following types of attacks was done to the website?

Options

  • AXSS injection
  • BBlind XSS
  • CReflected XSS
  • DPersistent XSS

Explanation

The correct answer is A, XSS injection (Cross-Site Scripting injection). XSS injection is the broad, general category of attack where an attacker injects malicious scripts (typically JavaScript) into input fields of a web application. The other options describe specific subtypes: Reflected XSS (C) is a non-persistent form where the malicious script is reflected off the server in an immediate response; Persistent XSS (D), also called Stored XSS, saves the payload in a database for later execution; and Blind XSS (B) is a variant of Persistent XSS where the attacker cannot see the result directly. Since the question asks what general type of attack occurred based on spotting a suspicious script-like string in an input field, the broadest and most accurate classification is simply XSS injection.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PT0-001 Practice