Which HTTP header can be used to mitigate some types of XSS attacks?
- Content-Security-Policy
- Strict-Transport-Security
- X-Content-Type-Options
- X-Frame-Options
The Content-Security-Policy (CSP) header can be used to mitigate some types of XSS attacks by defining and controlling the sources from which certain types of content can be loaded.
Loading...
Related Quiz
- How can a server control the lifetime of a cookie in a client's browser?
- The method __________ is used to set the length of the content body in the response.
- The __________ method is essential for managing user logouts in secure web applications.
- How can input sanitization be ineffective against certain advanced XSS attacks?
- Which SQL statement is used to start a transaction in a database?