A new web based application has been developed and deployed in production. A security engineer decides to
use an HTTP interceptor for testing the application. Which of the following problems would MOST likely be
uncovered by this tool?

A.
The tool could show that input validation was only enabled on the client side

B.
The tool could enumerate backend SQL database table and column names

C.
The tool could force HTTP methods such as DELETE that the server has denied

D.
The tool could fuzz the application to determine where memory leaks occur