Which web attack is a server-side attack? Cross-site request forgery Clickjacking SQL injection Cross-site scripting

Which web attack is possible due to a lack of input validation? SQL injection Extraneous files Clickjacking Cross-site request forgery

What type of attack involves injecting malicious code into a website to hijack a session cookie?Cross-site scripting (XSS) attacksPassword attacksPing flood attacksSQL injections

Which of the following is a common vulnerability in web applications? Cross-site scripting (XSS) Cross-site request forgery (CSRF) SQL injection All of the above

Which two attacks target web servers through exploiting possible vulnerabilities of input functions used by an application? (Choose two.)cross-site scriptingtrust exploitationport scanningport redirectionSQL injectionNavigation Bar

Which of the following is a common vulnerability in web servers? Directory traversal SQL injection Cross-site scripting None of the above