During a discussion of a penetration test final report, the consultant shows the following payload used to attack a system: ?/ aLeRt("pwned") Based on the code, which of the following options represents the attack executed by the tester and the associated countermeasure?

A. Arbitrary code execution: the affected computer should be placed on a perimeter network

B. SQL injection attack: should be detected and prevented by a web application firewall

C. Cross-site request forgery: should be detected and prevented by a firewall

D. XSS obfuscated: should be prevented by input sanitization

CompTIACompTIA

PT0-003 · Question #168

PT0-003 Question #168: Real Exam Question with Answer & Explanation

Sign in or unlock PT0-003 to reveal the answer and full explanation for question #168. The question stem and answer options stay visible for context.

Submitted by femi9· Mar 6, 2026Attacks and Exploits

Question

During a discussion of a penetration test final report, the consultant shows the following payload used to attack a system: ?/<sCRitP>aLeRt("pwned")</ScriPt> Based on the code, which of the following options represents the attack executed by the tester and the associated countermeasure?

Options

AArbitrary code execution: the affected computer should be placed on a perimeter network
BSQL injection attack: should be detected and prevented by a web application firewall
CCross-site request forgery: should be detected and prevented by a firewall
DXSS obfuscated: should be prevented by input sanitization

Unlock PT0-003 to see the answer

You've previewed enough free PT0-003 questions. Unlock PT0-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock PT0-003 - $49.99 / 30 days Sign in

Topics

#XSS#cross-site scripting#input sanitization#web application security

Full PT0-003 Practice Browse All PT0-003 Questions