SSCP Systems and Application Security • Set 5
SSCP Systems and Application Security Practice Test 5 — 15 questions with explanations. Free, no signup.
A company deploys a web application that processes credit card payments. The development team uses parameterized queries for all database interactions. However, during a penetration test, the tester successfully injects malicious code into a search field and retrieves sensitive customer data. Which of the following is the most likely cause?