Which attack exploits input validation vulnerabilities?
ARP spoofing
pharming attacks
cross-site scripting (XSS)
DNS poisoning White Hat Sec