A malicious piece of code (e.g. PHP, Python, Ruby) that can be uploaded to a site to gain access to files stored on that site. Once it is uploaded, the hacker can use it to edit, delete, or download any files on the site, or upload their own.

Common form of SQLi which evade the login form

Which mitigation technique helps you tell the parser that a speciffic character is a literal and not a control character?

Which of the following languages is the primary target of cross-site scripting?

Which Metasploit's payload can be used to connect to NetCat listener on vulnerable server ?

Which mitigation technique helps you to prevent SQL Injection?

______ is possible when an attacker uses a vulnerable website or web application to inject malicious code which is stored and later automatically served to other users who visit the web page.