Salesforce
ARC-300 · Question #39
ARC-300 Question #39: Real Exam Question with Answer & Explanation
Sign in or unlock ARC-300 to reveal the answer and full explanation for question #39. The question stem and answer options stay visible for context.
Question
A developer is checking for Cross Site Scripting (XSS) and found that the quick search is not escaped (allows inclusion of Javascript) in the following script: How would the developer resolve this issue?
Options
- AReplace ' with double Quote*
- BUse <isprint value="${searchPhrase}* encoding-'jshtmr />
- CUse <isprint value='${searchPhrase} encoding-'jsblock" />
- DUse <toprint value="${searchPhrase}" />
Unlock ARC-300 to see the answer
You've previewed enough free ARC-300 questions. Unlock ARC-300 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.