Internet Security - Sample Interview Question (Senior Level)

You are testing a web application that handles a catalog and you send the following request that correctly displays an item in the catalog.

http://www.mytarget.com/catalog.php?id=15 

Then you modify the URL to 

http://www.mytarget.com/catalog.php?id=; 

and receive the following error message: ?mysql_fetch_assoc() supplied argument is not a valid MySQL result resource in ??. 

Which of the following statements is correct?

  1. The application acts correctly by showing us the error in the parameter.
  2. The application could be exploited using a XSS attack.
  3. The application could be exploited using SQL injection.
Tests in Internet Security for Seniors

Test Name Difficulty Time (minutes) No. of Questions
Internet Security Online Test for Seniors Internet Security Senior 60 30

More Specific Tests in Internet Security for Seniors

Test Name Difficulty Time (Minutes) No. of Questions
Internet-Security-Attacks-and-Vulnerabilities Online Test for Seniors Internet Security - Attacks and Vulnerabilities Senior 20 10
Internet-Security-Security-Technologies-and-Concepts Online Test for Seniors Internet Security - Security Technologies and Concepts Senior 20 10
Internet-Security-Direct-Access-Attacks Online Test for Seniors Internet Security - Direct Access Attacks Senior 20 10
Internet-Security-Eavesdropping Online Test for Seniors Internet Security - Eavesdropping Senior 20 10
Internet-Security-Denial-of-Service Online Test for Seniors Internet Security - Denial of Service Senior 20 10
Internet-Security-Exploits Online Test for Seniors Internet Security - Exploits Senior 20 10
Internet-Security-Backdoors Online Test for Seniors Internet Security - Backdoors Senior 20 10