The BEST methods for a web developer to prevent the website application code from being
vulnerable to cross-site request forgery (XSRF) is to: (Select TWO).

A.
Permit redirection to Internet-facing web URLs.

B.
Ensure all HTML tags are enclosed in angle brackets, e.g., ”<” and “>”.

C.
Validate and filter input on the server side and client side.

D.
Use a web proxy to pass website requests between the user and the application.

E.
Restrict and sanitize use of special characters in input and URLs.

Explanation: