Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA Exam SY0-701 Topic 1 Question 36 Discussion

Actual exam question for CompTIA's SY0-701 exam
Question #: 36
Topic #: 1
[All SY0-701 Questions]

While reviewing logs, a security administrator identifies the following code:

Which of the following best describes the vulnerability being exploited?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Inocencia at Mar 22, 2025, 01:08 AM

Limited Time Offer

25%

Off

Get Premium SY0-701 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Buck
3 months ago
You know, I bet the developers were just trying to 'send_info' in the most efficient way possible. Efficiency at its finest, amirite?
upvoted 0 times
Carma
2 months ago
B) SQLi
upvoted 0 times
...
Tracey
3 months ago
A) XSS
upvoted 0 times
...
...
Sanda
3 months ago
CSRF? Nah, that doesn't make sense. Gotta be XSS, my dude. Straight up web injection shenanigans.
upvoted 0 times
...
Leslie
3 months ago
DDoS? Really? That's a bit of a stretch, don't you think? This is clearly an XSS vulnerability.
upvoted 0 times
...
Julio
3 months ago
I think it could also be CSRF, as it involves unauthorized actions being performed on behalf of the user.
upvoted 0 times
...
Shawna
3 months ago
But the code looks like it's trying to send information, which is more characteristic of XSS.
upvoted 0 times
...
Mary
3 months ago
I disagree, I believe it's SQLi.
upvoted 0 times
...
Elizabeth
4 months ago
Hmm, I'm not sure. Could it be SQLi too? That function name seems a bit suspicious.
upvoted 0 times
Veda
3 months ago
User 3: Yeah, XSS makes sense. It's important to be cautious with any suspicious code.
upvoted 0 times
...
Teddy
3 months ago
User 2: Oh, I see. Thanks for clarifying. I'll keep that in mind.
upvoted 0 times
...
Iluminada
3 months ago
User 1: It's actually XSS, not SQLi. That function could be used to inject malicious scripts.
upvoted 0 times
...
...
Shawna
4 months ago
I think the vulnerability being exploited is XSS.
upvoted 0 times
...
Goldie
4 months ago
Definitely XSS, that code looks like it's trying to run something shady in the browser.
upvoted 0 times
Vinnie
4 months ago
User 3: It's important to always sanitize user input to prevent XSS attacks.
upvoted 0 times
...
Chantell
4 months ago
User 2: XSS is a common vulnerability that attackers use to run malicious scripts.
upvoted 0 times
...
Nakisha
4 months ago
User 1: I agree, that code definitely looks like it's trying to execute something in the browser.
upvoted 0 times
...
...

Save Cancel