🔥 3-day streak
CompTIA CySA+ (CS0-003)76 / 147
Question 76 of 147

A vulnerability scan of a customer-facing web application flags a critical SQL injection vulnerability in a login form. The development team confirms the finding is valid: the application concatenates user-supplied credentials directly into dynamic SQL statements. As the security analyst, which secure coding control should you recommend the developers implement to most effectively eliminate this class of vulnerability?

Reviewed for accuracy · Report an issueNext question