The root cause of a successful cross site request forgery (XSRF) attack against an application is
that the vulnerable application:
A.
uses multiple redirects for completing a data commit transaction.
B.
has implemented cookies as the sole authentication mechanism.
C.
has been installed with a non-1egitimate license key.
D.
is hosted on a server along with other applications.
Explanation:
XSRF exploits inadequate authentication mechanisms in web applications that rely only on
elements such as cookies when performing a transaction. XSRF is related to an authentication
mechanism, not to redirection. Option C is related to intellectual property rights, not to XSRF
vulnerability. Merely hosting multiple applications on the same server is not the root cause of this
vulnerability.