EC-Council
312-50V13 · Question #452
Calvin, a grey-hat hacker, targets a web application that has design flaws in its authentication mechanism. He enumerates usernames from the login form of the web application, which requests users to
Sign in or unlock 312-50V13 to reveal the answer and full explanation for question #452. The question stem and answer options stay visible for context.
Submitted by kim_seoul· Mar 6, 2026Hacking Web Applications
Question
Calvin, a grey-hat hacker, targets a web application that has design flaws in its authentication mechanism. He enumerates usernames from the login form of the web application, which requests users to feed data and specifies the incorrect field in case of invalid credentials. Later, Calvin uses this information to perform social engineering. Which of the following design flaws in the authentication mechanism is exploited by Calvin?
Options
- AInsecure transmission of credentials
- BVerbose failure messages
- CUser impersonation
- DPassword reset mechanism
Unlock 312-50V13 to see the answer
You've previewed enough free 312-50V13 questions. Unlock 312-50V13 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#verbose failure messages#username enumeration#authentication flaws#web application vulnerability