A security team is reviewing the findings in a report that was delivered after a third party performed a penetration test. One of the findings indicated that a web application form field is vulnerable to cross-site scripting. Which of the following application security techniques should the security analyst recommend the developer implement to prevent this vulnerability?
To prevent cross-site scripting (XSS) vulnerabilities in a web application form field, the appropriate application security technique to implement is input validation. Input validation ensures that the data entered into the form fields is appropriate and expected, thereby preventing malicious scripts from being executed. Secure cookies, version control, and code signing do not address input validation or mitigate XSS vulnerabilities directly. Hence, input validation is the correct choice.
A security team is reviewing the findings in a report that was delivered after a third party performed a penetration test. One of the findings indicated that a web application form field is vulnerable to cross-site scripting. Which of the following application security techniques should the security analyst recommend the developer implement to prevent this vulnerability? A. Secure cookies B. Version control C. Input validation D. Code signing
Thanks bro
Answer is C. Its important to make sure that javascript code can not be inputted and executed into Form fields.