An attacker modified the HTML code of a legitimate password-change web form, then hosted the. Html file on the attacker's web server. The attacker then emailed a URL link of the hosted file to a real user of the web page. Once the user clicked the link, it changed the user's password to a value the attacker set. Based on this information, what type of attack is the website vulnerable to

Cross-Site Request Forgery (CSRF) is an attack that compels an authorised end-user to do undesirable activities on a web application. An attacker can deceive users of a web application into performing activities of the attacker's choosing with the use of social engineering.

An attacker modified the HTML code of a legitimate password-change web form, and then hosted the .Html file on the attacker's web server. The attacker then emailed a URL link of the hosted file to a real user of the web page. Once the user clicked the link, it changed the user's password to a value the attacker set. The type of attack is the website vulnerable to Cross-Site Request Forgery (CSRF).

Learn more about CSRF:

https://brainly.com/question/14663080

#SPJ1

mahima6824soni mahima6824soni · Answer 2 · 2022-05-07T12:20:47+02:00

The type of attack is the website vulnerable to Cross-Site Request Forgery (CSRF).

What is Cross-Site Request Forgery (CSRF)?

CSRF is a one click attack also known as XSRF. It is a malicious website exploit in which an unauthorized command is submitted by a user who the web application trusts.

On a wide range of websites, CSRF attacks can be used. If a website allows users to change data, it could be a target for hackers.

Thus, the type of attack is the website vulnerable to Cross-Site Request Forgery (CSRF).

Learn more about Cross-Site Request Forgery

https://brainly.com/question/20316643

#SPJ1