What does SSRF (Server-Side Request Forgery) allow an attacker to do?
-
A
Forge HTTP responses from the server to the client
-
B
Make the server send requests to internal or external resources on the attacker's behalf
-
C
Steal session cookies through cross-site scripting
-
D
Forge SSL certificates to intercept traffic