An attacker changes the profile information of a particular user (victim) on the target website.

An attacker changes the profile information of a particular user (victim) on the target website. The attacker uses this string to update the victim’s profile to a text file and then submit the data to the attacker’s database.
<iframe src=”http://www.vulnweb.com/updateif.php” style=”display:none”></iframe>
What is this type of attack (that can use either HTTP GET or HTTP POST) called?
Cross-Site Request Forgery
Cross-Site Scripting
Browser Hacking
SQL Injection

72-B, III Floor,

Vijay Block, Main Vikas Marg, Laxmi Nagar,

New Delhi – 110092

Near Nirman Vihar Metro Station ( Opp. Metro Pillar No.50 )

Tel:+91-8130535445,011-64601115,

Leave a Reply