Question

Which of the following correctly describes the primary difference between Cross-Site Request Forgery (CSR

  • F and Cross-Site Scripting (XS
  • S ?
A CSRF targets the user’s browser, while XSS targets the application server.
B CSRF exploits session management flaws, while XSS exploits input sanitization issues
C CSRF involves executing malicious JavaScript, while XSS does not
D CSRF relies on phishing emails, while XSS requires direct access to the server
E CSRF can only occur on HTTPS websites, whereas XSS occurs on HTTP websites.
Practice Next

Hey! Ask a query