Given the following:
http://example.com/download.php?id-.../.../.../etc/passwd
Which of the following BEST describes the above attack?

Question

Given the following: http://example.com/download.php?id-.../.../.../etc/passwd Which of the following BEST describes the above attack?

Accepted Answer

Correct answer: C. C. Directory traversal attack — The correct answer is C, as the URL demonstrates a directory traversal attack, where the attacker attempts to access sensitive files by manipulating the path. The other options do not apply: A involves uploading files, B involves redirecting users, and D refers to directly accessing restricted objects without proper authorization.

CompTIA PenTest+ (PT0-001) — Question 103

Answer options

Correct answer: C

Explanation