What kind of control can an attacker get from a SQL injection?

Full control over database contents

What happens if '1'='1' is added to a SQL query?

The condition always evaluates to true

What role does the SQL query play in code injection?

It executes user-supplied input directly if not validated

What is a code injection attack?

An attack where malicious code is inserted into user input fields

Why is input validation important?

To prevent execution of malicious code entered by users

What is the danger of not sanitizing inputs?

User input can manipulate database commands

Why is XSS abbreviated as XSS instead of CSS?

To avoid confusion with Cascading Style Sheets

Which of the following is a goal of an XSS attack? Options: Steal cookies and session tokens, Delete server files, Install rootkits, Change DNS settings, Shutdown the system

Steal cookies and session tokens

What could attackers do with stolen tokens from Subaru's site?

Gain permanent access to vehicles

What happens when a user visits a stored XSS-infected page?

Malicious script runs automatically

Cap_31SQL_32_CrossScript Flashcards

Student preview

45 questions

Show all answers

1.

FLASHCARD QUESTION

Front

What room number is Mr. Cusack's Class?

Back

502

2.

FLASHCARD QUESTION

Front

Which is a recommended protection against SQL injection? Options: Parameterized queries, Storing passwords in plain text, Using JavaScript filters, Blocking port 80

Back

Parameterized queries

3.

FLASHCARD QUESTION

Front

What is the result of injecting 'OR 1=1' in a vulnerable SQL query?

Back

All records in the database are returned

4.

FLASHCARD QUESTION

Front

Which is a technique to avoid SQL injection? Options: Prepared statements, Minifying code, Using long passwords, Adding CSS validation

Back

Prepared statements

5.

FLASHCARD QUESTION

Front

Why is SQL injection considered critical?

Back

It allows attackers to access or modify all database data

6.

FLASHCARD QUESTION

Front

What does SQL stand for?

Back

Structured Query Language

7.

FLASHCARD QUESTION

Front

Which field was used in the WebGoat example?

Back

Transaction Authentication Number

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

34 questions

3ESO UNIT 2 Flashcards

Flashcard

•

10th Grade

31 questions

Processes and Behaviour

Flashcard

•

8th Grade - University

50 questions

Faire & Jouer

Flashcard

•

KG - University

45 questions

NJROTC

Flashcard

•

9th - 12th Grade

37 questions

Culinary Arts 1 - Objective 5.01 Flashcards - Review Questions

Flashcard

•

11th Grade

41 questions

Writing Final

Flashcard

•

9th - 12th Grade

45 questions

Fall Exam Review

Flashcard

•

9th - 12th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Computers

18 questions

[AP CSP] JavaScript Programming Lesson 2025-2026

Lesson

•

9th - 12th Grade

10 questions

Exploring Digital Citizenship Essentials

Interactive video

•

6th - 10th Grade