CompTIA PenTest+ (PT0-002) — Question 438

A tester who is performing a penetration test on a website receives the following output:
Warning: mysql_fetch_array() expects parameter 1 to be resource, boolean given in /var/www/search.php on line 62
Which of the following commands can be used to further attack the website?

Answer options

• A. <script>var adr = '../evil.php?test=' + escape(document.cookie);</script>
• B. ../../../../../../../../../../etc/passwd
• C. /var/www/html/index.php;whoami
• D. 1 UNION SELECT 1, DATABASE (), 3 --

Correct answer: D

Explanation

The correct answer, D, is valid because it leverages SQL injection to extract database information, which is indicated by the error message. Options A and B do not utilize the SQL injection vulnerability and focus on different attack vectors, while option C attempts to execute a command that would not work in this context.