Which of the following is a best practice for preventing SQL Injection when executing SQL queries in PHP?
A). Use Parameterized Queries
B). Store Passwords in Plain Text
C). Use addslashes() Function
D). Disable Error Reporting
Which PHP function is commonly used to sanitize input data from a form to prevent SQL injection?
A). mysqli_real_escape_string()
B). htmlspecialchars()
C). filter_var()
D). htmlentities()
Which HTTP header instructs web browsers to limit the scope of cookies to a specific domain?
A). SameSite
B). Cache-Control
C). Access-Control-Allow-Origin
D). Content-Security-Policy
Which of the following is a secure method for storing passwords in a database?
A). Hashing
B). Encryption
C). Salting
D). All of the above
Which PHP function is commonly used to check if a form field is empty?
A). empty()
B). isset()
C). is_empty()
D). is_null()
What is the purpose of session management in web applications?
A). Maintaining User State
B). Encrypting Data
C). Preventing SQL Injection
D). Validating Form Data
Which of the following is NOT a common security vulnerability associated with file uploads in web applications?
A). File Inclusion
B). File Upload Vulnerability
C). Path Traversal
D). Cross-Site Request Forgery
What security mechanism prevents Cross-Site Request Forgery (CSRF) attacks by generating and validating unique tokens for each form submission?
A). CSRF Token
B). Session Management
C). Secure Cookies
D). HTTPS
What is the purpose of using prepared statements when interacting with databases in PHP?
A). Preventing SQL Injection
B). Improving Performance
C). Encrypting Data
D). Enforcing Data Integrity
Which of the following is a common security vulnerability associated with form data submission?
A). SQL Injection
B). Form Spamming
C). Broken Authentication
D). Clickjacking