32. Cross-Site Scripting (XSS) Quiz

Because 'XSS' is easier to remember

Because 'CSS' is already used for Cascading Style Sheets

Because 'XSS' sounds cooler

Because 'CSS' is too long

Python

Ruby

JavaScript

PHP

Third-party website's input fields

User's email account

Social media profiles

User's browser settings

Stored attack

Reflected attack

Indirect attack

Direct attack

Product description

User's name

Credit card number field

Shipping address

It is less harmful

It uses a different scripting language

It stores the malicious code on a third-party site

It targets only one user

In a browser extension

In a private email

On a social media site

In a text message

It expired too quickly

It never expired

It was too complex

It was not encrypted

Click on all links in emails

Disable your browser

Keep your browser and applications updated

Use outdated software

Allow all scripts in input fields

Check all inputs for scripts

Use only one type of input field

Ignore user inputs