[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fTib9diHxyqr7zrJAl55a8qhWlNH5iE4GVhMevdGmPuI":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":19,"related":20,"source":31,"type":32},[],"2024-05-30 15:53:07",147295152,[8,9,10,11],"sandbox","srcdoc","allowfullscreen","frameborder",{"count":13,"courseId":14,"courseImg":15,"courseName":16,"workId":17,"workName":18},40,"b7186aefdff3fc6c5ce6f083c7e97592","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F25b30343053994e8940089572d36015b.jpg","Web应用安全","5e75128856bf4fb28bb37159b67daa47","","哪个属性可以防止一个&lt;iframe&gt;被其他页面嵌入",[21,33,43,53,63,73,76,86,96,106],{"answer":22,"createTime":23,"id":24,"options":25,"question":30,"source":31,"type":32},[],"2024-05-30 15:53:00",147295147,[26,27,28,29],"&lt;script&gt;","&lt;iframe&gt;","&lt;div&gt;","&lt;button&gt;","点击劫持攻击主要利用了哪种HTML元素","v1",0,{"answer":34,"createTime":35,"id":36,"options":37,"question":42,"source":31,"type":32},[],"2024-05-30 15:53:01",147295148,[38,39,40,41],"X-Content-Type-Options","X-Frame-Options","Content-Security-Policy","X-XSS-Protection","哪个HTTP响应头可以用来防止点击劫持",{"answer":44,"createTime":45,"id":46,"options":47,"question":52,"source":31,"type":32},[],"2024-05-30 15:53:02",147295149,[48,49,50,51],"DENY","SAMEORIGIN","ALLOW-FROM uri","NONE","在X-Frame-Options头中,哪个值表示不允许任何页面将当前页面嵌入&lt;iframe&gt;或&lt;frame&gt;中",{"answer":54,"createTime":55,"id":56,"options":57,"question":62,"source":31,"type":32},[],"2024-05-30 15:53:04",147295150,[58,59,60,61],"SQL注入","跨站脚本攻击(XSS)","跨站请求伪造(CSRF)","用户在不知情的情况下执行操作","如果一个网站没有设置防止点击劫持的措施,那么它可能面临哪种风险",{"answer":64,"createTime":65,"id":66,"options":67,"question":72,"source":31,"type":32},[],"2024-05-30 15:53:06",147295151,[68,69,70,71],"验证码","输入验证","帧破坏(Frame Busting)","加密通信","哪种技术可以用来检测并阻止点击劫持攻击",{"answer":74,"createTime":5,"id":6,"options":75,"question":19,"source":31,"type":32},[],[8,9,10,11],{"answer":77,"createTime":78,"id":79,"options":80,"question":85,"source":31,"type":32},[],"2024-05-30 15:53:09",147295153,[81,82,83,84],"浏览器会阻止嵌入","嵌入成功,但内容被修改","浏览器会显示警告信息","嵌入成功,但无法交互","当一个网站使用了X-Frame-Options: DENY,但攻击者仍然试图将其嵌入&lt;iframe&gt;,会发生什么",{"answer":87,"createTime":88,"id":89,"options":90,"question":95,"source":31,"type":32},[],"2024-05-30 15:53:10",147295154,[91,92,93,94],"使用HTTPS的网站","使用HTTP的网站","没有用户输入的网站","所有类型的网站","哪种类型的网站最容易受到点击劫持攻击",{"answer":97,"createTime":98,"id":99,"options":100,"question":105,"source":31,"type":32},[],"2024-05-30 15:53:11",147295155,[101,102,103,104],"用户上传文件","用户登录后重定向","静态页面浏览","服务器后台配置","URL跳转漏洞通常发生在以下哪种情况下",{"answer":107,"createTime":108,"id":109,"options":110,"question":112,"source":31,"type":32},[],"2024-05-30 15:53:12",147295156,[58,59,111,60],"钓鱼攻击","URL跳转漏洞可能导致哪种攻击"]