Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA Exam PT0-002 Topic 1 Question 40 Discussion

Actual exam question for CompTIA's PT0-002 exam
Question #: 40
Topic #: 1
[All PT0-002 Questions]

During an assessment, a penetration tester manages to exploit an LFI vulnerability and browse the web log for a target Apache server. Which of the following steps would the penetration tester most likely try NEXT to further exploit the web server? (Choose two.)

Show Suggested Answer Hide Answer
Suggested Answer: C

by Lavonna at Apr 20, 2023, 03:01 PM

Limited Time Offer

25%

Off

Get Premium PT0-002 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Rene
6 days ago
Oh man, this is like a hacker's dream come true! I'm definitely going to try log poisoning and command injection. Imagine what kind of mayhem I could unleash on that poor Apache server!
upvoted 0 times
...
Nikita
7 days ago
I think SQL injection and cross-site scripting would be more interesting to explore. Who needs logs when you can manipulate the database or steal user sessions?
upvoted 0 times
...
Dorcas
8 days ago
Hmm, log poisoning and command injection seem like the logical next steps to further exploit the web server. Can't wait to try those out!
upvoted 0 times
...
Ilene
11 days ago
I would also consider trying command injection as the next step.
upvoted 0 times
...
Tamar
18 days ago
I agree with Deane, SQL injection could be a good option to further exploit the web server.
upvoted 0 times
...
Deane
21 days ago
I think the penetration tester might try SQL injection next.
upvoted 0 times
...

Save Cancel