CompTIA CySA+ CS0-003 Practice Question
A cybersecurity analyst is tasked with assessing a web application for security risks. During their investigation, they notice that the application fails to sanitize user input when executing a search function, potentially allowing attackers to execute unintended commands or access data. Which type of vulnerability is most likely present in the application?
Cross-site scripting (XSS)
XML external entity (XXE) attack
SQL injection
Remote code execution (RCE)