A security analyst accesses corporate web pages and inputs random data in the forms. The response received includes the type of database used and SQL

commands that the database accepts. Which of the following should the security analyst use to prevent this vulnerability?

A. Application fuzzing

B. Error handling

C. Input validation

D. Pointer dereference