nerdexam
CompTIA

CAS-003 · Question #854

CAS-003 Question #854: Real Exam Question with Answer & Explanation

Sign in or unlock CAS-003 to reveal the answer and full explanation for question #854. The question stem and answer options stay visible for context.

Technical Integration of Enterprise Security

Question

A security analyst is examining threats with the following code function: Which of the following threats should the security analyst report?

Exhibit

CAS-003 question #854 exhibit

Options

  • APOST should be used instead of GET when making requests.
  • BRoot privileges are needed for the service to bind to the privileged port 8443.
  • CThe website allows unauthorized access to sensitive resources.
  • DThe web server allows insecure cookie storage.
  • EThere is unsafe execution of third-party JavaScript code.

Unlock CAS-003 to see the answer

You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock CAS-003 - $49.99 / 30 daysSign in

Topics

#JavaScript security#third-party code#client-side attacks#code analysis
Full CAS-003 Practice