A web application is configured to target browsers and allow access to bank accounts to siphon money to a foreign account.

This is an example of which of the following attacks?

A. SQL

injection

B. Header manipulation

C. Cross-site scripting

D. Flash cookie exploitation