Developing Applications and Automating Workflows Using Cisco Platforms (DEVASC) — Question 427
Which type of OWASP threat uses malicious scripts that are injected into otherwise benign and trusted websites?
Answer options
- A. brute force
- B. man-in-the-middle
- C. XSS
- D. SQL injection
Correct answer: C
Explanation
The correct answer is C, XSS (Cross-Site Scripting), which specifically refers to the injection of malicious scripts into trusted websites. The other options, such as brute force and man-in-the-middle, represent different types of attacks that do not involve script injection into websites, while SQL injection pertains to database queries rather than web scripts.