Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
During a penetration test, a tester finds that the web app being analyzed is vulnerable to Cross Site Scripting. Which of the following conditions must be met to exploit this vulnerability?
The session cookies must not have the HttpOnly flag set.
The web application must not have the secure flag set.
The victim user should not have an endpont security solution
The victims browser must have ActiveX enabled
This answer is not correct in general. because you can exploit different vulnerabilities with xss and not only "cookies stealing".
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.