Cindy, our company’s Chief Technology Officer (CTO), suspects that someone is trying to hack into the company, and she’s heard that you have some cybersecurity skills that could prove useful. Cindy suspects that there are some hackers who are using SQLi to launch attacks and steal information from one of the databases and also to hijack users’ sessions and take over certain accounts. Can you use your cybersecurity penetration testing skills with SQLi to track down the hackers? Cindy will need for you to submit a report with recommendations on your findings, which is pretty typical for others in your industry with this type of role.
Write a security assessment report that will be sent to the technical team and senior management, and specifically Cindy, the CTO. Your report should be approximately 3 pages and address the following:
Summary of Findings (overview of vulnerabilities found)
Types of tests used (with details on outcomes)
Impact of Threats
How any parts of the CIA Triad could be compromised with the vulnerabilities
Does OWASP have any recommendations that you can apply?
Executive Summary (what recommendations would you give to the CTO)

Present potential solutions, mitigations, or other
suggestions for reducing or eliminating the vulnerability

(On CodeHS)