A website contains the following code which sends a message, user name and password to a server 1 c form action message php method get 2 c p Message input type text name message p 3 c p Username input type text name user p 4 c p Password input type text name pass p 5 c p input type submit p and on the server the message php page processes this data 1 s php 2 s $user $ REQUEST user 3 s $pass $ REQUEST pass 4 s $message $ REQUEST message 5 s $result mysqli multi query ( $con, UPDATE messages SET 6 s message $message WHERE user $user ) 7 s $row mysqli fetch array ( $result ) 8 s if ( empty ( $row ) ) 9 s echo Your message $message has been added 1 0 s 1 1 s Describe four security weaknesses in this website, how they might be exploited and rank them in order of severity 8 marks

The Answer is in the image, click to view ...

Answered step by step

Verified Expert Solution

Link Copied!

Question

1 Approved Answer

Posted on Aug 26, 2024

A website contains the following code which sends a message, user name and password to a server: 1 c form action = message . php

A website contains the following code which sends a message, user name and password to a server:

1

form action

=

message

.

php

method

=

get

2

Message:

input type

=

text

name

=

message

/ /

3

Username:

input type

=

text

name

=

user

/ /

4

Password:

input type

=

text

name

=

pass

/ /

5

input type

=

submit

/ /

and on the server the message.php page processes this data:

1

?

php

2

s $user

=

REQUEST

[

user

]

;

3

s $pass

=

REQUEST

[

pass

]

;

4

s $message

=

REQUEST

[

message

]

;

5

s $result

=

mysqli

multi

query

(

$con,

UPDATE messages SET

6

s message

= .

$message.

WHERE user

= .

$user.

)

;

7

s $row

=

mysqli

fetch

array

(

$result

)

;

8

s if

(!

empty

(

$row

)) 9

s echo

Your message:

.

$message.

has been added

;

10

11

?

Describe four security weaknesses in this website, how they might be exploited and rank them in order of severity.

[8

marks

]

Step by Step Solution

There are 3 Steps involved in it

Step: 1

Get Instant Access to Expert-Tailored Solutions

See step-by-step solutions with expert insights and AI powered tools for academic success

Step: 2

Step: 3

Ace Your Homework with AI

Get the answers you need in no time with our AI-driven, step-by-step assistance

Get Started

Recommended Textbook for

Database Systems Introduction To Databases And Data Warehouses

Authors: Nenad Jukic, Susan Vrbsky, Svetlozar Nestorov

1st Edition

1943153191, 978-1943153190

More Books

Students also viewed these Databases questions

Question

★★★★★

(a) 011 101 011 101

Answered: 1 week ago

Question

★★★★★

11-6. A certain type of electronic measurement has a standard deviation of 9 units. How large of a sample should be taken so that the 95% confidence interval for the mean will not exceed 4 units in...

Answered: 1 week ago

Question

★★★★★

2. Can an athlete gate out distracting information while at the same time maintain a broad external focus of attention? If so, give examples in sport where this occurs.

Answered: 1 week ago

Question

★★★★★

Kay Mart Company is preparing financial statements and provides the following information about several of its major inventory items at year end: Required If Kay Mart uses the lower-of-cost-or-market...

Answered: 1 week ago

Question

★★★★★

BabyBurr Enterprises uses customers served as its measure of activity. During February, the company budgeted for 35,300 customers, but actually served 32,200 customers. The company uses the following...

Answered: 1 week ago

Question

★★★★★

California State University SAN MARCOS Exam 1: SE 370Principles of Software Engineering - 1. PUBLIC - Software engineers shall act consistently with the public interest. 2. CLIENT AND EMPLOYER -...

Answered: 1 week ago

Question

★★★★★

You are required to design a shell and tube heat exchanger having a rectangular cross section as shown in figure 1 below. The heat exchanger uses water as the cooling fluid to reduce the temperature...

Answered: 1 week ago

Question

★★★★★

The Bakeoff Case Read "The Bakeoff" case and post approximately 1 page of text (about 4 paragraphs) answering the following questions SOLELY based on the case. Do not use other references. What were...

Answered: 1 week ago

Question

★★★★★

1. Determine the magnitude and direction of the force that must be applied to the bottom of the gate shown below to keep the gate closed. 3.4 m Water 1.5 m wide gate Hinge T 0.75 m

Answered: 1 week ago

Question

★★★★★

Lynda is a manager of an investment center. Her division has been performing below expectations recently because one of its larger projects has not been as successful as anticipated. Given the poor...

Answered: 1 week ago

Question

★★★★★

Question 2 Determine the first two critical speeds for the shaft shown in figure 1 below. Young's modulus for steel should be taken as 200GN/m2. Show all the calculations and state all your...

Answered: 1 week ago

Question

★★★★★

3. Visit the Center for Communication and Civic Engagement, which can be accessed by going to the books online resources for this chapter and clicking on WebLink 1.7. At this site, youll fi nd...

Answered: 1 week ago

Question

★★★★★

1. What would you say next to Toya? How would you meet your ethical responsibilities as her mentor and also adapt to her need for reassurance? Apply what youve learned in this chapter by analyzing...

Answered: 1 week ago

Question

★★★★★

4. Survey the last three editions of your campus newspaper for announcements of opportunities for community service and civic engagement. Can you identify one that interests you? If so, use the...

Answered: 1 week ago

Previous Question Next Question