ExamQuestions.com

Register
Login
Certified Cloud Security Professional (CCSP) Exam Questions

ISC

Certified Cloud Security Professional (CCSP)

211 / 300

Question 211:

Which of the following threat types involves an application that does not validate authorization for portions of itself beyond when the user first enters it? 

Answer options:

A. Cross-site request forgery
B. Missing function-level access control
C. Injection
D. Cross-site scripting