nerdexam
Exams212-82Questions#150
EC-CouncilEC-Council

212-82 · Question #150

212-82 Question #150: Real Exam Question with Answer & Explanation

The correct answer is B: Application Error Disclosure. WASC ID 9 is specifically assigned to the "Application Error Disclosure" alert, which reveals sensitive system information.

Submitted by anjalisingh· Mar 6, 2026Application Security for Cloud

Question

name of the alert with WASC ID 9. (Practical Question)

Options

  • AAbsence of Anti-CSRF Tokens
  • BApplication Error Disclosure
  • CViewstate without MAC Signature
  • DX-Frame-Options Header Not Set

Explanation

WASC ID 9 is specifically assigned to the "Application Error Disclosure" alert, which reveals sensitive system information.

Common mistakes.

  • A. Absence of Anti-CSRF Tokens corresponds to WASC ID 8, which is a different vulnerability related to Cross-Site Request Forgery protection.
  • C. Viewstate without MAC Signature corresponds to WASC ID 19, which is a vulnerability specific to ASP.NET applications not properly securing ViewState.
  • D. X-Frame-Options Header Not Set corresponds to WASC ID 15, related to Clickjacking protection.

Concept tested. Web Application Security Consortium (WASC) Threat Classification

Reference. https://web.archive.org/web/20180214061528/http://projects.webappsec.org/w/page/13246960/WASC%20Threat%20Classification#Application_Error_Disclosure

Topics

#WASC Threat Classification#Web application vulnerabilities#Security alerts

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 212-82 PracticeBrowse All 212-82 Questions