Web application threats and vulnerabilities quiz answers

1.) The correct answer is: b. False

Learn more about hidden form fields in our tip, Don't hide sensitive information in hidden form fields.

Back to quiz

2.) The correct answer is: d. path traversal attacks

Learn more in our tip, Protect your Web site against path traversal attacks.

Back to quiz

3.) The correct answer is: d. All of the above

Learn more about improper error handling in this tip.

Back to quiz

4.) The correct answer is: b. False

Learn more about cache-control in our tip, How to prevent the risks of client-side caching

Back to quiz

5.) The correct answer is: a. Client-side data validation

Learn more in our tip, How to prevent the risks of client-side caching

Back to quiz

6.) The correct answer is: cross-site scripting

Read the definition of cross-site scripting.

Back to quiz

7.) The correct answer is: b. False

Learn more about keylogger attacks in our tip, How to detect and prevent keylogger attacks.

Back to quiz

8.) The correct answer is: c. SQL injection

Read the definition of SQL injection.

Back to quiz

9.) The correct answer is: d. All of the above

Learn more in our tip, What is spyware? The definition dilemma.

Back to quiz

10.) The correct answer is: a. True

Learn more about manipulating Web application variables in this expert response.

Check your score

This was last published in January 2006

Dig Deeper on Web application and API security best practices

All
News
Get Started
Evaluate
Manage
Problem Solve

SearchCloudSecurity

How enterprises should handle GDPR compliance in the cloud

GDPR compliance in the cloud can be an intimidating concept for some enterprises, but it doesn't have to be. Rob Shapland ...

Compromised cloud credentials still plaguing enterprises

Why are enterprises still struggling with identity and access management in the cloud? Experts at RSA Conference discuss the ...

How TLS mutual authentication for cloud APIs bolsters security

Secure access to cloud APIs is necessary but challenging. One viable option to combat that is TLS mutual authentication, ...

SearchNetworking

Network-as-a-service market blossoms as demands grow

The network-as-a-service market is attracting more attention, as enterprises look for ways to outsource some of their ...

Blockchain technology use in networking? Not so fast

Blockchain technology use has little value in networking, according to one IT analyst. Analysts also examine IoT security and ...

Cisco DNA Center gets access to more IoT devices

Cisco DNA Center can now access an additional 620 IoT device profiles. Cisco also introduced this week a couple of Catalyst 9500 ...

SearchCIO

Forrester: The CIO's job in fostering human-machine collaboration

According to a new Forrester report, more human-machine collaboration in the enterprise can lead to a simpler, more productive --...

Enterprise machine learning and AI: Use cases and challenges

In this handbook, learn how AI and machine learning advancements are disrupting digitized business and what CIOs can do to take ...

Tackling security debt: The role of risk register, patch management

In this Q&A, Akamai's Dave Lewis offers pointers on how to address security debt and also discusses how organizations can avoid ...

SearchEnterpriseDesktop

Workflow automation software improves LA court productivity

Court's in session, and the jury is unanimous: Automation software can help IT departments provide simpler workflows for end ...

How to create a custom Windows 10 image for deployment

IT pros can build a Windows 10 image with custom apps, Start menu tools and more that they can easily deliver throughout the ...

Four Windows 10 built-in security features to know

IT needs an effective plan to maximize security for Windows 10 and get the most out of its built-in features.

SearchCloudComputing

Microsoft takes holistic approach to IoT security concerns

Azure Sphere extends security from the cloud to the device. It's the most holistic approach on the market and provides another ...

Get started with Red Hat OpenShift Container Platform

Despite its benefits, Red Hat OpenShift is just one technology amid a growing list intended to simplify container management and ...

Compare management options for Google Kubernetes Engine

Google supports various management options for its Kubernetes Engine service, and while each has its pros and cons, you should ...

ComputerWeekly.com

Security Think Tank: Use good practice to address cryptojacking risk

How can organisations best defend against cryptojacking?

CNCF wants to make Kubernetes ‘boring’

CNCF is about to kick off its its Copenhagen conference. The organisation wants to make containers less exciting and more ...

UK surveillance laws a potential “sticking point” post-Brexit

The UK’s controversial Investigatory Powers Act could be an impediment to achieving an adequacy agreement for free data exchanges...

Related Resources

Dig Deeper on Web application and API security best practices

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.