A penetration tester notices that the X-Frame-Options header on a web application is not set. Which of the following would a malicious actor do to exploit this configuration setting?
A) Use path modification to escape the application's framework.
B) Create a frame that overlays the application.
C) Inject a malicious iframe containing JavaScript.
D) Pass an iframe attribute that is malicious.
Correct Answer:
Verified
Q46: A penetration tester is checking a script
Q47: Which of the following vulnerabilities are MOST
Q48: A company hires a penetration tester to
Q49: A tester has captured a NetNTLMv2 hash
Q50: A penetration tester has performed a pivot
Q52: A penetration tester has been asked to
Q53: Given the following script: Q54: The following command is run on a Q55: A consultant wants to scan all the Q56: After performing a security assessment for a
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents