Big Halloween Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Discussions
  3. CompTIA
  4. PenTest+
  5. PT0-003 Discussions
  6. PT0-003 Exam Topic 1 Question 9 Discussion

CompTIA PenTest+ Exam PT0-003 Question # 9 Topic 1 Discussion

 CompTIA Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

CompTIA PenTest+ Exam PT0-003 Question # 9 Topic 1 Discussion

PT0-003 Exam Topic 1 Question 9 Discussion:
Question #: 9
Topic #: 1

A penetration tester finds that an application responds with the contents of the /etc/passwd file when the following payload is sent:

<!DOCTYPE data [ ]>

&foo;

Which of the following should the tester recommend in the report to best prevent this type of vulnerability?
A.

Drop all excessive file permissions with chmod o-rwx

B.

Ensure the requests application access logs are reviewed frequently

C.

Disable the use of external entities

D.

Implement a WAF to filter all incoming requests

Get Premium PT0-003 Questions
Actual exam question for CompTIA PT0-003 exam by Zara9837 at Sep 6, 2025, 9:50:39 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next