Which technical control measure should the tester... company?

Post author:InfraExam
Post category:SEO
Post published:January 28, 2024
Reading time:2 mins read
Post last modified:June 12, 2024

A company hires a professional to perform penetration testing. The tester has identified and verified that one web application is vulnerable to SQL injection and cross-site scripting attacks. Which technical control measure should the tester recommend to the company?

user input sanitization
multifactor authentication
process-level remediation
role-based access control (RBAC)

Explanation & Hints:

Parameterized queries best prevent SQL injection. Using input validation (sanitizing user input) best practices is recommended to mitigate and prevent vulnerabilities such as cross-site scripting, cross-site request forgery, SQL injection, command injection, XML external entities, and other vulnerabilities.

A company hires a professional to perform penetration testing. The tester has identified and verified that one web application is vulnerable to SQL injection and cross-site scripting attacks. Which technical control measure should the tester recommend to the company?

For more Questions and Answers:

Ethical Hacker Course Final Exam Answers Full 100%