Which of the following threat types involves the sending of commands or arbitrary data through input fields in an application in an attempt to get that code executed as part of normal processing?
Injection attacks involve sending malicious commands or arbitrary data through input fields, tricking the application into executing unintended commands as part of its normal processing. This contrasts with Cross-site scripting, which targets client-side code execution, and cross-site request forgery, which leverages authenticated sessions to force unwanted actions. Missing function-level access control is about inadequate permission checks rather than injecting code.
This section is not available anymore. Please use the main Exam Page.CCSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
MaciekMT
1 month, 4 weeks agozxccvbnm
8 months, 1 week agoPravinkarthik
9 months agoakg001
11 months ago