Which of the following is a practice associated with the security risk known as cross-site scripting
(XSS)?
A.
Inserting JavaScript code in a URL query string to perform an unintended or malicious action
B.
Using a look-alike site to impersonate a trusted site so the user will enter sensitive information
C.
Using a certificate authority validation to persuade users to accept a specialized script that can
override certain security restrictions in thebrowser
D.
Launching a JavaScript statement that has no conditions for ending, thus requiring the user to
close the browser in order to end the script
Explanation: