What is the main goal of a Directory Traversal attack?

To access files outside the permitted system space such as the root folder

To delete files in the root folder

What tactic is used in a Directory Traversal attack to move up the file system tree?

Insert a series of ../ characters into the URL or software code

Insert a series of // characters

Based on the example provided, what is the purpose of adding '../../../etc/passwd' to the URL in a Directory Traversal attack?

To print out the passwd file from the server

To delete files from the server

What is a Buffer Overflow?

B) Inserting code into the memory buffer of a process where the data is larger than the input variable can hold and overflows into process execution space to run hostile code.

A) A process where data is deleted from memory

C) A process where memory is compressed

D) A process where data is encrypted

What is Command Injection?

B) Inserting text into form fields that is passed into an executable process, usually to run terminal commands on the hosting server

C) A way to speed up website loading

Which of the following is NOT a step in a command injection attack?

D) Encrypt the user input before sending it to the server

A) User input is processed according to the web page code

B) Insert a special character to indicate a new command

C) Follow with a command to run in the OS of the hosting device

This is how XSS works: 2. What happens when the web page is accessed by the victim?

The malicious scripts unknowingly pass to their browser

User Input Threats

Authored by Mousumi Biswas

Mathematics

9th Grade

CCSS covered

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

25 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the definition of User Input? Fill in the blank: User Input is numbers, characters, a text string, or ________ that is provided by the user to a website.

script code

background image

server address

browser history

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is an example of user input?

When a user fills in a form

When a user logs in

When a user adds a comment to a forum

All of the above

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is NOT a type of attack that can occur when a website accepts user input?

A) Directory Traversal

B) Buffer Overflow

C) Command Injection

D) Phishing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: ________ is an attack where an attacker tries to access directories and files stored outside the web root folder.

Directory Traversal

SQL Injection

Cross-Site Scripting

Session Fixation

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: ________ is an attack that occurs when more data is written to a buffer than it can hold.

Buffer Overflow

SQL Injection

Cross-Site Scripting

Phishing

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Fill in the blank: ________ is an attack where malicious code is inserted into a website to be executed by other users (often abbreviated as XSS).

Cross-Site Scripting

SQL Injection

Phishing

Denial of Service

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Based on the passage: Why is security often not considered a priority during the coding process?

Most programmers are focused on making their application work and meeting their deadlines to publish the code.

Security is always the main focus during coding.

Programmers believe security is handled automatically by the computer.

Security is only important after the application is released.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Microsoft

or continue with

Facebook

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Factorización: Trinomio x^2+bx+c

Quiz

•

9th Grade

20 questions

1.0 INDEKS Tingkatan 3

Quiz

•

KG - Professional Dev...

20 questions

Sampel dan kejadian (Peluang)

Quiz

•

9th - 12th Grade

20 questions

Circle Geometry-Angle Properties Review

Quiz

•

9th Grade

20 questions

Operaciones con números naturales - 5to B

Quiz

•

5th Grade - University

20 questions

Diagnostico Noveno EPA

Quiz

•

9th Grade

20 questions

Year 9 Band 1 IA3

Quiz

•

9th Grade

20 questions

Penilaian Harian Ke- 1 Materi Bilangan Berpangkat dan Bentuk Akar

Quiz

•

9th Grade

Popular Resources on Wayground

5 questions

A Home on the Shore

Quiz

•

3rd Grade

28 questions

US History Regents Review

Quiz

•

11th Grade

6 questions

A Horse Tale

Quiz

•

3rd Grade

20 questions

Math Review

Quiz

•

3rd Grade

10 questions

Juneteenth History and Significance

Interactive video

•

5th - 8th Grade

20 questions

Dividing Fractions

Quiz

•

5th Grade

55 questions

A Long Walk to Water Final Review

Quiz

•

6th - 8th Grade

10 questions

Equation Word Problems

Quiz

•

7th Grade

Discover more resources for Mathematics

6 questions

Mayan Mathematics part 1

Presentation

•

9th - 12th Grade

10 questions

Unit 9 Quiz

Quiz

•

9th - 12th Grade

User Input Threats

What is the definition of User Input? Fill in the blank: User Input is numbers, characters, a text string, or ________ that is provided by the user to a website.

Which of the following is an example of user input?

Which of the following is NOT a type of attack that can occur when a website accepts user input?

Fill in the blank: ________ is an attack where an attacker tries to access directories and files stored outside the web root folder.

Fill in the blank: ________ is an attack that occurs when more data is written to a buffer than it can hold.

Fill in the blank: ________ is an attack where malicious code is inserted into a website to be executed by other users (often abbreviated as XSS).

Based on the passage: Why is security often not considered a priority during the coding process?

What is the main goal of a Directory Traversal attack?

What tactic is used in a Directory Traversal attack to move up the file system tree?

Fill in the blank: Typing 'cd ..' will move us from the current folder to its ______ folder.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Mathematics