A security analyst has been investigating an incident involving the corporate website. Upon investigation,
it has been determined that users visiting the corporate website would be automatically redirected to a,
malicious site. Further investigation on the corporate website has revealed that the home page on the
corporate website has been altered to include an unauthorized item. Which of the following would
explain why users are being redirected to the malicious site?

A.
DNS poisoning

B.
XSS

C.
Iframe

D.
Session hijacking