A Node service builds SQL with template literals including user search terms. Risk?
Multiple choice — select one answer
Answer choices
Architectural breakdown & explanation
Dynamic SQL concatenation is unsafe; use parameterized queries or ORM bindings.
Correct answer(s): c. SQL injection allowing data theft or authentication bypass against the database
Exam domain: Insecure coding (25% weight on the official guide).
Official documentation & study links
Practice this certification
This page is one question from the KeyTrain's Key Training — Application Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.