Question Info

This question is public and is used in 13 tests or worksheets.

Type: Multiple-Choice
Category: Programming
Level: Continuing Education
Score: 1
Author: BacMan
Last Modified: 3 months ago

View all questions by BacMan.

View Question

View this question.

Add this question to a group or test by clicking the appropriate button below.

Continuing Education :: Programming by BacMan
While performing a code review, you find the following expression that writes a parameter directly to the output stream:

${param.message}

Which security vulnerability may be introduced with this line of code?
  1. Cross-Site Request Forgery (CSRF)
  2. Session Fixation
  3. Cross-Site Scripting (XSS)
  4. Insecure Direct Object Reference
You need to have at least 5 reputation to vote a question down. Learn How To Earn Badges.