Web application threats and vulnerabilities quiz answers

1.) The correct answer is: b. False

Learn more about hidden form fields in our tip, Don't hide sensitive information in hidden form fields.

Back to quiz

2.) The correct answer is: d. path traversal attacks

Learn more in our tip, Protect your Web site against path traversal attacks.

Back to quiz

3.) The correct answer is: d. All of the above

Learn more about improper error handling in this tip.

Back to quiz

4.) The correct answer is: b. False

Learn more about cache-control in our tip, How to prevent the risks of client-side caching

Back to quiz

5.) The correct answer is: a. Client-side data validation

Learn more in our tip, How to prevent the risks of client-side caching

Back to quiz

6.) The correct answer is: cross-site scripting

Read the definition of cross-site scripting.

Back to quiz

7.) The correct answer is: b. False

Learn more about keylogger attacks in our tip, How to detect and prevent keylogger attacks.

Back to quiz

8.) The correct answer is: c. SQL injection

Read the definition of SQL injection.

Back to quiz

9.) The correct answer is: d. All of the above

Learn more in our tip, What is spyware? The definition dilemma.

Back to quiz

10.) The correct answer is: a. True

Learn more about manipulating Web application variables in this expert response.

Check your score

This was last published in January 2006

Dig Deeper on Web application and API security best practices

SearchCloudSecurity

How enterprise cloud VPN protects complex IT environments

Do you know how enterprise cloud VPN differs from a traditional VPN? Explore how cloud VPN works and whether it's the right ...

CASB, CSPM, CWPP emerge as future of cloud security

Complexity has introduced new needs and challenges when securing cloud environments. Find out how CASB, CSPM and CWPP tools have ...

Prevent cloud account hijacking with 3 key strategies

The ability to identify the various methods of cloud account hijacking is key to prevention. Explore three ways to limit ...

SearchNetworking

Juniper's 128 acquisition needed to improve SD-WAN

Juniper Networks plans to 'enhance' its Contrail SD-WAN through the acquisition of 128 Technology. 128 has a more advanced SD-WAN...

The basics of zero-trust network access explained

Some experts believe VPNs have struggled to adapt to an increasingly cloud-based, internet-dependent world. Enter zero-trust ...

Enterprise 5G: Guide to planning, architecture and benefits

An enterprise 5G deployment requires extensive planning. Prepare for advances in wireless technology using this 5G guide that ...

SearchCIO

Is your company's IT governance strategy cloud ready?

As companies prepare to migrate to the cloud, they need to review their IT governance strategy before making any decisions to ...

Government action on big tech monopoly power moving quickly

Government antitrust actions are building against tech giants Amazon, Apple, Facebook and Google. They could lead to tighter ...

Quantum computing challenges and opportunities

While quantum computing is still under development, IT leaders should know how they can use it today to stay on the competitive ...

SearchEnterpriseDesktop

A complete guide to troubleshooting Windows Hello

Windows Hello has several common issues that administrators may need to troubleshoot. Find out what those issues are here and ...

Comparing Jamf vs. Fleetsmith for macOS management

Like any decision around purchasing a business technology, the Jamf vs. Fleetsmith debate for Apple device management comes down ...

Mac users key in defending against Apple T2 chip flaw

IT pros should lean on Mac users to protect corporate networks against exploiters of the Apple T2 chip vulnerability. Hard drive ...

SearchCloudComputing

Compare Google Cloud Deployment Manager vs. Terraform on GCP

Determine whether to opt for cloud native Deployment Manager or third-party Terraform for infrastructure as code on Google Cloud.

Explore the tools for disaster recovery on AWS, Azure and GCP

Utilize cloud infrastructure for your disaster recovery plan. Learn about the tools and services from AWS, Google and Microsoft ...

Cloud performance testing is necessary for app migration

So, you're moving your app to the cloud. Is it ready for that? Here's how to test it to see if it will meet performance goals ...

ComputerWeekly.com

Protecting remote workers an opportunity to do security better

Securing the fully remote workforce has been a challenge for IT teams, but it presents an opportunity to commit to a higher ...

CIOs who stick around could end up as COOs

The career path for chief information officers looks promising as large businesses digitise more of their organisation and IT ...

Bath and North East Somerset goes live with integrated care record

Record system allows health and care professionals to share information across Virgin Care, local GPs, Royal United Hospitals NHS...

Web application threats and vulnerabilities quiz answers

Dig Deeper on Web application and API security best practices

Security School quiz: Email security basics and threats

Quiz: Common Vulnerabilities

Quiz: E-discovery and security in the enterprise

Quiz: Unleashing the Power of the Database

Start the conversation

0 comments

Please create a username to comment.

SearchCloudSecurity

How enterprise cloud VPN protects complex IT environments

CASB, CSPM, CWPP emerge as future of cloud security

Prevent cloud account hijacking with 3 key strategies

SearchNetworking

Juniper's 128 acquisition needed to improve SD-WAN

The basics of zero-trust network access explained

Enterprise 5G: Guide to planning, architecture and benefits

SearchCIO

Is your company's IT governance strategy cloud ready?

Government action on big tech monopoly power moving quickly

Quantum computing challenges and opportunities

SearchEnterpriseDesktop

A complete guide to troubleshooting Windows Hello

Comparing Jamf vs. Fleetsmith for macOS management

Mac users key in defending against Apple T2 chip flaw

SearchCloudComputing

Compare Google Cloud Deployment Manager vs. Terraform on GCP

Explore the tools for disaster recovery on AWS, Azure and GCP

Cloud performance testing is necessary for app migration

ComputerWeekly.com

Protecting remote workers an opportunity to do security better

CIOs who stick around could end up as COOs

Bath and North East Somerset goes live with integrated care record

Dig Deeper on Web application and API security best practices

Security School quiz: Email security basics and threats

Quiz: Common Vulnerabilities

Quiz: E-discovery and security in the enterprise

Quiz: Unleashing the Power of the Database

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.