Question 14 7 Marks Marilyn Monroe Recent Graduate Another University Benefit Education Se Q30253524

Question 14 (7 marks) Marilyn Monroe, a recent graduate from another university, has not had the benefit of education in secure coding techniques. In her first job, coding an e-commerce site, she writes the following PHP code: $querySELECT FROM customers WHERE acctno -. POST[acctno]. ; $result - $conn->query ($query); a. (1 mark) What has she done wrong? b. (4 marks) Describe two ways of fixing this problem. (2 marks) Give an example of the type of account number value an attacker could use to test whether the system is exploitable. *c.

Question 14 (7 marks) Marilyn Monroe, a recent graduate from another university, has not had the benefit of education in secure coding techniques. In her first job, coding an e-commerce site, she writes the following PHP code: $query”SELECT FROM customers WHERE acctno -‘”. POST[‘acctno’]. “‘”; $result – $conn->query ($query); a. (1 mark) What has she done wrong? b. (4 marks) Describe two ways of fixing this problem. (2 marks) Give an example of the type of account number value an attacker could use to test whether the system is exploitable. *c. Show transcribed image text Question 14 (7 marks) Marilyn Monroe, a recent graduate from another university, has not had the benefit of education in secure coding techniques. In her first job, coding an e-commerce site, she writes the following PHP code: $query”SELECT FROM customers WHERE acctno -‘”. POST[‘acctno’]. “‘”; $result – $conn->query ($query); a. (1 mark) What has she done wrong? b. (4 marks) Describe two ways of fixing this problem. (2 marks) Give an example of the type of account number value an attacker could use to test whether the system is exploitable. *c.

0 replies

Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *