Citrix Endpoint Management Administration — Question 15

Which protection can a Citrix Engineer implement to prevent a hacker from extracting a customer list from the company website?

Answer options

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. HTML SQL Injection

Correct answer: D

Explanation

HTML SQL Injection is a method used by attackers to manipulate a website's database query, potentially allowing them to extract sensitive information like customer lists. The other options, while related to web security, do not specifically address the risk of unauthorized database access that SQL Injection poses.