An attacker somehow obtains an unsuspecting user s SID and then...

Home / PHP / HTML Forms Handling / Question

Examveda

An attacker somehow obtains an unsuspecting user’s SID and then using it to impersonate the user inorder to gain potentially sensitive information. This attack is known as.

A. session-fixation

B. session-fixing

C. session-hijack

D. session-copy

Answer: Option A

Solution (By Examveda Team)

You can minimize this risk by regenerating the session ID on each request while maintaining the session-specified data. PHP offers a convenient function named session_regenerate_id() that will replace the existing ID with a new one.

This Question Belongs to PHP >> HTML Forms Handling

Join The Discussion

Related Questions on HTML Forms Handling

Which two predefined variables are used to retrieve information from forms?

A. $GET & $POST

B. $_GET & $_POST

C. $__GET & $__POST

D. GET & POST

View Answer

The attack which involves the insertion of malicious code into a page frequented by other users is known as.

A. basic sql injection

B. advanced sql injection

C. cross-site scripting

D. scripting

View Answer

When you use the $_GET variable to collect data, the data is visible to.

A. none

B. only you

C. everyone

D. selected few

View Answer

When you use the $_POST variable to collect data, the data is visible to.

A. none

B. only you

C. everyone

D. selected few

View Answer