CompTIA Exam PT0-002 Topic 1 Question 12 Discussion

Actual exam question for CompTIA's PT0-002 exam

Question #: 12
Topic #: 1

A penetration tester who is conducting a web-application test discovers a clickjacking vulnerability associated with a login page to financial dat

a. Which of the following should the tester do with this information to make this a successful exploit?

APerform XSS.

BConduct a watering-hole attack.

CUse BeEF.

DUse browser autopwn.

Show Suggested Answer

Suggested Answer: A

by Jettie at May 05, 2022, 09:22 AM

Limited Time Offer

25%

Off

Get Premium PT0-002 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Shawna

5 days ago

I remember studying clickjacking, but I'm not sure which option directly exploits it. I think it might be related to using BeEF, but I need to double-check.

upvoted 0 times

...

Meaghan

16 days ago

Okay, I think I've got this. The invoice is created in the UK when the draft intercompany invoice is approved in the US Projects ledger. Option A looks like the right answer.

upvoted 0 times

...

Buddy

17 days ago

This one seems straightforward. Usability testing is all about how user-friendly the software is, so the related quality characteristic must be something like reusability or portability.

upvoted 0 times

...