Which statement best describes reflected XSS vs stored XSS?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the eLearnSecurity Junior Penetration Tester exam with our comprehensive quiz platform. Improve your skills with multiple-choice questions, detailed explanations, and exam tips. Get exam ready with ease!

Multiple Choice

Which statement best describes reflected XSS vs stored XSS?

Explanation:
The difference lies in how the attacker’s script is handled. Reflected XSS occurs when user input is echoed back by the server in the immediate response, so the malicious payload appears right away in the page the user sees after clicking a link or submitting data. There’s no persistence on the server, so the impact is typically limited to that single request or session. Stored XSS involves saving the payload on the server (in a database, comment, log, etc.), and that script is later delivered to other users who view the affected content, causing a persistent, broader impact. The option describing the payload appearing in the immediate response captures the essence of reflected XSS, which is why it is the correct choice.

The difference lies in how the attacker’s script is handled. Reflected XSS occurs when user input is echoed back by the server in the immediate response, so the malicious payload appears right away in the page the user sees after clicking a link or submitting data. There’s no persistence on the server, so the impact is typically limited to that single request or session. Stored XSS involves saving the payload on the server (in a database, comment, log, etc.), and that script is later delivered to other users who view the affected content, causing a persistent, broader impact. The option describing the payload appearing in the immediate response captures the essence of reflected XSS, which is why it is the correct choice.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy