Developing Applications and Automating Workflows Using Cisco Platforms (DEVASC) — Question 75
Which type of threat occurs when an attacker can send hostile data to an interpreter within an application?
Answer options
- A. sensitive data exposure
- B. broken authentication
- C. cross-site scripting
- D. injection
Correct answer: D
Explanation
The correct answer is 'injection' because it specifically refers to the method where attackers insert hostile data into an application, which is then executed by an interpreter. The other options do not involve sending data to an interpreter; 'sensitive data exposure' relates to data breaches, 'broken authentication' involves flaws in login mechanisms, and 'cross-site scripting' pertains to scripts running in a user’s browser rather than an interpreter in the application.