What is the purpose of using HTTPS (HTTP Secure) in web applications?
A). Encrypting Data
B). Authenticating Users
C). Preventing XSS Attacks
D). Optimizing Page Load Speed
Which PHP function is commonly used to sanitize input data from a form to prevent XSS attacks?
A). htmlspecialchars()
B). htmlentities()
C). strip_tags()
D). filter_var()
Which of the following is a best practice for preventing SQL Injection when executing SQL queries in PHP?
A). Use Parameterized Queries
B). Store Passwords in Plain Text
C). Use addslashes() Function
D). Disable Error Reporting
Which PHP function is commonly used to validate email addresses submitted through a form?
A). filter_var()
B). preg_match()
C). validate_email()
D). email_check()
What is the purpose of input validation in web forms?
A). Ensuring Data Integrity
B). Enhancing User Experience
C). Preventing XSS Attacks
D). Enforcing Password Policies
Which of the following is NOT a common security vulnerability associated with file uploads in web applications?
A). File Inclusion
B). File Upload Vulnerability
C). Path Traversal
D). Cross-Site Request Forgery
Which PHP function is used to generate a random CSRF token for form submissions?
A). bin2hex()
B). uniqid()
C). md5()
D). openssl_random_pseudo_bytes()
What security mechanism prevents Cross-Site Request Forgery (CSRF) attacks by generating and validating unique tokens for each form submission?
A). CSRF Token
B). Session Management
C). Secure Cookies
D). HTTPS
Which HTTP header instructs web browsers to limit the scope of cookies to a specific domain?
A). SameSite
B). Cache-Control
C). Access-Control-Allow-Origin
D). Content-Security-Policy
What does XSS stand for in the context of web security?
A). Cross-Site Scripting
B). XML Secure Socket
C). External Server Session
D). Cross-Site Sanitization