CompTIA PenTest+ Exam PT0-003 Question # 7 Topic 1 Discussion

PT0-003 Exam Topic 1 Question 7 Discussion:

Question #: 7

Topic #: 1

A penetration tester finds that an application responds with the contents of the /etc/passwd file when the following payload is sent:
xml
Copy code
<!DOCTYPE data [
]>
&foo;
Which of the following should the tester recommend in the report to best prevent this type of vulnerability?

Drop all excessive file permissions with chmod o-rwx.

Ensure the requests application access logs are reviewed frequently.

Disable the use of external entities.

Implement a WAF to filter all incoming requests.

Get Premium PT0-003 Questions

Actual exam question for CompTIA PT0-003 exam by Riven48078 at Aug 3, 2025, 7:12:36 PM

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

CompTIA PenTest+ Exam PT0-003 Question # 7 Topic 1 Discussion

CompTIA PenTest+ Exam PT0-003 Question # 7 Topic 1 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

CompTIA PenTest+ Exam PT0-003 Question # 7 Topic 1 Discussion

CompTIA PenTest+ Exam PT0-003 Question # 7 Topic 1 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval