CompTIA PenTest+ (PT0-001) — Question 183

A penetration tester has been hired to perform a penetration test for an organization. Which of the following is indicative of an error-based SQL injection attack?

Answer options

• A. a=1 or 1ג€"ג€"
• B. 1=1 or bג€"ג€"
• C. 1=1 or 2ג€"ג€"
• D. 1=1 or aג€"ג€"

Correct answer: A

Explanation

Option A is indicative of an error-based SQL injection attack as it attempts to manipulate the SQL query to trigger an error message. The other options (B, C, and D) do not utilize the same structure or error-triggering mechanisms relevant to error-based SQL injection, making them less effective in demonstrating this specific attack type.