{"id":441,"date":"2022-02-25T19:45:38","date_gmt":"2022-02-25T19:39:18","guid":{"rendered":"https:\/\/exampracticetests.com\/eccouncil\/ceh-v11\/certified-ethical-hacker-v11-312-50v11-question300\/"},"modified":"2022-02-25T19:46:29","modified_gmt":"2022-02-25T19:46:29","slug":"certified-ethical-hacker-v11-312-50v11-question300","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/eccouncil\/ceh-v11\/certified-ethical-hacker-v11-312-50v11-question300\/","title":{"rendered":"Certified Ethical Hacker v11 312-50v11 – Question300"},"content":{"rendered":"
An attacker changes the profile information of a particular user (victim) on the target website. The attacker uses this string to update the victim's profile to a text file and then submit the data to the attacker's database.<\/p>\n

\n<iframe src=""http:\/\/wm.vulnweb.com\/updateif.php""<\/a> style=""display:none"">
\n<\/iframe >\n<\/p><\/blockquote>\n

What is this type of attack (that can use either HTTP GET or HTTP POST) called?

A.<\/strong> Browser Hacking
B.<\/strong> Cross-Site Scripting
C.<\/strong> SQL Injection
D.<\/strong> Cross-Site Request Forgery<\/div>\n

<\/p>\n