CompTIA Security+ (SY0-601) — Question 9

A security analyst is reviewing application logs to determine the source of a breach and locates the following log: https://www.comptia.com/login.php?id='%20or%20'1'1='1
Which of the following has been observed?

Answer options

• A. DLL Injection
• B. API attack
• C. SQLi
• D. XSS

Correct answer: C

Explanation

The log shows an SQL injection attempt due to the use of SQL syntax in the query string, specifically the 'or' condition which is a classic SQLi technique. The other options, such as DLL Injection and XSS, do not relate to the SQL command structure present in the log. An API attack typically involves manipulating API requests rather than direct SQL command injections.