There are several steps in a stored XSS attack
The attacker hijacks the user session
The attacker submits an issue containing known JavaScript
User login
The user requests the attacker's question 5
The server responds to the attacker's JavaScript
The user's browser sends a session token to the attacker
The attacker's JavaScript is executed in the user's browser
For the ordering of these steps, which of the following options is correct?
Currently there are no comments in this discussion, be the first to comment!