answer the following question my proffessor doesntnot give answer or even what questions are correct or wrong because he want us to find it for our selfs the i need the following answer and if can explain why it that.

Question 39

The act of using someones authentication cookie to gain access under a faux identity.

		XML Injection
		Network Eavesdropping
		XSS
		HTTP Replay

Getting a user to click on a fake url which then launches an attack.

		One-Click Attack
		XML Injection
		LDAP Injection
		Forceful Browsing

_____ attacks violate the basic security concept of access control

		Authentication
		Injection
		CIA
		DDoS

Access control says that each role or user should have specific access to certain systems, functions, and data

		Access control
		CIA
		LDAP
		NITS

When a software application takes in data input and interprets it as a change to a command, pretty much anyone who's able to send data to that application can tell it what to do.

		Insecure Deserialization
		Injection attack
		Using Components with Known Vulnerabilities
		Security misconfiguration

Injection attacks most commonly affect

		HTML
		React Native queries
		OS commands
		ORM queries
		Compilers
		NoSQL queries
		XML parsers

In the 2016 Presidential election which state suffered a cyberattack against its voter registration database

		New York
		Alabama
		Ohio
		Illinois

There are four basic ways to approach input validation.

True

False

Whitelisting is preferred over blacklisting for mitigating improper input.

True

False

Another approach to preventing and avoiding injection attacks is to use what's called _____ statements and stored procedures

		prepared
		hidden
		sanitized
		whitelisted