Free Preparation Discussions
MENU
CompTIA Exam CS0-003 Topic 1 Question 18 Discussion
Topic #: 1
An analyst is evaluating a vulnerability management dashboard. The analyst sees that a previously remediated vulnerability has reappeared on a database server. Which of the following is the most likely cause?
The security analyst is validating a Local File Inclusion (LFI) vulnerability, as indicated by the ''/.../.../.../'' in the GET request which is a common indicator of directory traversal attempts associated with LFI. The other options are not relevant for this purpose: SQL injection involves injecting malicious SQL statements into a database query; XSS involves injecting malicious scripts into a web page; CSRF involves tricking a user into performing an unwanted action on a web application.
According to the CompTIA CySA+ Study Guide: Exam CS0-003, 3rd Edition1, one of the objectives for the exam is to ''use appropriate tools and methods to manage, prioritize and respond to attacks and vulnerabilities''. The book also covers the usage and syntax of Burp Suite, a tool used for testing web application security, in chapter 6. Specifically, it explains the meaning and function of each component in Burp Suite, such as Repeater, which allows the security analyst to modify and resend individual requests1, page 239. Therefore, this is a reliable source to verify the answer to the question.
Marcos
14 days agoJennifer
16 days agoLonny
24 days agoEarlean
25 days agoAnnelle
1 days agoMagdalene
2 days agoHillary
2 days agoCorazon
8 days agoAliza
1 months agoEdna
14 days agoSerina
19 days agoBobbye
20 days agoSina
1 months agoReita
2 months agoLelia
21 days agoMisty
1 months agoBenedict
2 months agoShannon
2 months agoNorah
2 months ago