CompTIA PenTest+ (PT0-002) — Question 164

During an assessment, a penetration tester manages to exploit an LFI vulnerability and browse the web log for a target Apache server. Which of the following steps would the penetration tester most likely try NEXT to further exploit the web server? (Choose two.)

Answer options

• A. Cross-site scripting
• B. Server-side request forgery
• C. SQL injection
• D. Log poisoning
• E. Cross-site request forgery
• F. Command injection

Correct answer: D, F

Explanation

The correct answers, D (Log poisoning) and F (Command injection), are logical next steps after gaining access to web logs through LFI, as they can manipulate server behavior or execute commands. The other options, such as A (Cross-site scripting) and C (SQL injection), do not directly relate to exploiting LFI vulnerabilities in the context of web logs.