Developing Applications and Automating Workflows Using Cisco Platforms (DEVASC) — Question 499

Which type of OWASP threat forges a malicious HTTP request into an application?

Answer options

• A. Clickjacking
• B. SQL Injection
• C. XSS
• D. CSRF

Correct answer: D

Explanation

The correct answer is D, CSRF, which stands for Cross-Site Request Forgery and involves tricking users into executing unwanted actions on web applications. Clickjacking, SQL Injection, and XSS (Cross-Site Scripting) are different types of vulnerabilities that do not specifically relate to forging HTTP requests like CSRF does.