A cross-site request forgery (CSRF) vulnerability occurs when

technology security

  1. If the request does not contain a nonce that proves its provenance

  2. The application acts on an HTTP request without verifying that the request was made with the user's consent

  3. A Web application uses session cookies

  4. All the above

Show answer
Correct Option: D

Find more quizzes: