CEH Web Application and Injection Attacks • Set 9
CEH Web Application and Injection Attacks Practice Test 9 — 15 questions with explanations. Free, no signup.
A web application tester notices that the application reflects user input in the URL without proper encoding. The tester submits a payload <script>alert('xss')</script> in a search field and the script executes in the browser. Which type of XSS vulnerability is this MOST likely?