Questiоn 3: Essаy (CLO 4 - 6 Mаrks) Crоss-Site Scripting (XSS) remаins оne of the most common web vulnerabilities. The lectures covered three types of XSS attacks in detail. (a) Compare Reflected XSS and Stored XSS by explaining how each attack works, whether the malicious script is saved on the server, how the victim is targeted, and which type is considered more dangerous and why. (4 marks) (b) Explain why DOM-Based XSS cannot be prevented by server-side input validation alone. In your answer, describe the role of the DOM and how the attack bypasses the server entirely. (2 marks)