A company has hired a cybersecurity firm to assess web server security posture. To test for cross-site
scripting vulnerabilities, the tester will use the string. Where would the tester use the string?
A. in an HTTP header
B. in a terminal window on the server
C. in a user input field in a web form
D. in an error message
