Salesforce Certified Development Lifecycle and Deployment Architect — Question 20

All AppExchange products are subject to Salesforce security reviews.
What is the most common reason that the prospect AppExchange products fail the security review?

Answer options

• A. SOQL injection
• B. Cross-site scripting
• C. CRUD/FLS (field level security)
• D. Session hacking

Correct answer: C

Explanation

The correct answer is C, as many AppExchange products fail security reviews due to improper handling of CRUD and Field Level Security, which can lead to unauthorized data access. While SOQL injection, cross-site scripting, and session hacking are also security concerns, they are less commonly the reasons for failure in this specific context.