Authenticating a user without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

technology security

  1. Phishing

  2. Injection flaws

  3. Session Fixation

  4. Http Response splitting attack

Show answer
Correct Option: C

Find more quizzes: