CompTIA Security+ (SY0-701) — Question 407

An attacker submits a request containing unexpected characters in an attempt to gain unauthorized access to information within the underlying systems. Which of the following best describes this attack?

Answer options

• A. Side loading
• B. Target of evaluation
• C. Resource reuse
• D. SQL injection

Correct answer: D

Explanation

The correct answer is D, SQL injection, as it specifically refers to the injection of malicious SQL statements to manipulate backend databases. Options A, B, and C do not relate to unauthorized access through malformed requests to databases, making them incorrect in this context.