An attack that exploits the ability of HTML-format emails to interpret and execute scripts and tags. Simply opening the email can trigger script execution, potentially leading to redirection to phishing sites, malware downloads, or session hijacking. Countermeasures include disabling HTML rendering in the email client or configuring it to receive messages in plain-text format.

Past questions testing this term · 1 questions

• 2020r02o #56HTML形式の電子メールの特徴を悪用する攻撃はどれか。