Certified Ethical Hacker 312-50v10 – Question138

An attacker changes the profile information of a particular user (victim) on the target website. The attacker uses this string to update the victims profile to a text file and then submit the data to the attackers database.
<iframe src=http://www.vulnweb.com/updateif.php" style=display:none></iframe>
What is this type of attack (that can use either HTTP GET or HTTP POST) called?

Cross-Site Request Forgery
B. SQL Injection
C. Browser Hacking
D. Cross-Site Scripting

Correct Answer: A