A recently concluded penetration test revealed that a legacy web application is vulnerable lo SQL injection Research indicates that completely remediating the vulnerability would require an architectural change, and the stakeholders are not m a position to risk the availability of the application Under such circumstances, which of the following controls are low-effort, short-term solutions to minimize the SQL injection risk? (Select TWO).

PT0-001 0 Comments

A recently concluded penetration test revealed that a legacy web application is vulnerable lo SQL injection Research indicates that completely remediating the vulnerability would require an architectural change, and the stakeholders are not m a position to risk the availability of the application Under such circumstances, which of the following controls are low-effort, short-term solutions to minimize the SQL injection risk? (Select TWO).
A . Identity and eliminate inline SQL statements from the code.
B . Identify and eliminate dynamic SQL from stored procedures.
C . Identify and sanitize all user inputs.
D . Use a whitelist approach for SQL statements.
E . Use a blacklist approach for SQL statements.
F . Identify the source of malicious input and block the IP address.

Answer: B, C

Latest PT0-001 Dumps Valid Version with 248 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PT0-001 PDF     PT0-001 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments