CompTIA
PT0-001 · Question #36
PT0-001 Question #36: Real Exam Question with Answer & Explanation
Sign in or unlock PT0-001 to reveal the answer and full explanation for question #36. The question stem and answer options stay visible for context.
Attacks and exploits
Question
A penetration tester is testing a banking application and uncovers a vulnerability. The tester is logged in as a non-privileged user who should have no access to any data. Given the data below from the web interception proxy: Which of the following types of vulnerabilities is being exploited?
Options
- AForced browsing vulnerability
- BParameter pollution vulnerability
- CFile upload vulnerability
- DCookie enumeration
Unlock PT0-001 to see the answer
You've previewed enough free PT0-001 questions. Unlock PT0-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#forced browsing#authorization bypass#access control#web application security