You are carrying out the last round of testing for your new website before it goes live. The website has many dynamic pages and connects to a SQL backend that accesses your product inventory in a database. You come across a web security site that recommends inputting the following code into a search field on web pages to check for vulnerabilities:
alert(“This is a test.”)
When you type this and click on search, you receive a pop-up window that says:
“This is a test.”
What is the result of this test?
A.
Your website is vulnerable to CSS
B.
Your website is not vulnerable
C.
Your website is vulnerable to SQL injection
D.
Your website is vulnerable to web bugs
It is XSS attack not CSS attack.