CompTIACompTIA
PT0-002 · Question #22
PT0-002 Question #22: Real Exam Question with Answer & Explanation
Sign in or unlock PT0-002 to reveal the answer and full explanation for question #22. The question stem and answer options stay visible for context.
Attacks and Exploits
Question
A penetration tester is testing a web application that is hosted by a public cloud provider. The tester is able to query the provider's metadata and get the credentials used by the instance to authenticate itself. Which of the following vulnerabilities has the tester exploited?
Options
- ACross-site request forgery
- BServer-side request forgery
- CRemote file inclusion
- DLocal file inclusion
Unlock PT0-002 to see the answer
You've previewed enough free PT0-002 questions. Unlock PT0-002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Server-side request forgery#Cloud security#Metadata service exploitation#Credential theft