During a security audit, a tester is able to execute a script in the database input field. What type of vulnerability does this indicate?
- Cross-Site Request Forgery (CSRF)
- Cross-Site Scripting (XSS)
- Insecure Direct Object References (IDOR)
- SQL Injection
The ability to execute a script in the database input field points to a SQL Injection vulnerability, where malicious SQL queries can be injected and executed.
Loading...
Related Quiz
- What is SQL Injection primarily used for in cyber attacks?
- In terms of web services, what is a major security risk associated with HTTP that is mitigated by HTTPS?
- What primary function does an API Gateway perform in a microservices architecture?
- The approach where tests are written before the actual web service code is known as _______.
- What distinguishes symmetric encryption from asymmetric encryption?