An attacker somehow obtains an unsuspecting user’s SID and then using it to impersonate the user inorder to gain potentially sensitive information. This attack is known as.
A. session-fixation
B. session-fixing
C. session-hijack
D. session-copy
Answer: Option A
Solution(By Examveda Team)
You can minimize this risk by regenerating the session ID on each request while maintaining the session-specified data. PHP offers a convenient function named session_regenerate_id() that will replace the existing ID with a new one.Related Questions on HTML Forms Handling
Which two predefined variables are used to retrieve information from forms?
A. $GET & $POST
B. $_GET & $_POST
C. $__GET & $__POST
D. GET & POST
A. basic sql injection
B. advanced sql injection
C. cross-site scripting
D. scripting
When you use the $_GET variable to collect data, the data is visible to.
A. none
B. only you
C. everyone
D. selected few
When you use the $_POST variable to collect data, the data is visible to.
A. none
B. only you
C. everyone
D. selected few
Join The Discussion