1
Q
What is Cross-Site scripting (XSS) ?
A
malicious script injected into websites
2
Q
What is XSS used for?
A
attacker uses web application to send malicious code to a different user
3
Q
How does SQL injection attack works and what is it used for?
A
unexpected input to a web application to gain unauthorized access to an underlying database
4
Q
What can be compromised in case of web application vulnerabilities?
A
web front-end and backend databases
CISSP Domain 8
flashcards
Decks in class (14)
# Cards
-
Basic Architecture RDBMS14
-
Types of storage18
-
Machine Learning & Neural Networks6
-
System Development Models9
-
Software Development Maturity Models14
-
Change and Configuration Management3
-
Virus Propagation Techniques4
-
Application Attacks5
-
Web Application Vulnerabilities4
-
Network Reconnaissance Techniques (Discovery!)7
-
Protection Rings8
-
Software Development Lifecycle (SDLC)2
-
Concentric Circle Security5
-
Acquired Software Security Impact4
