A penetration tester is testing a banking application and uncovers a vulnerability. The tester is logged in as a non-privileged user who should have no access to any data. Given the data below from the web interception proxy: Which of the following types of vulnerabilities is being exploited?
A) Forced browsing vulnerability
B) Parameter pollution vulnerability
C) File upload vulnerability
D) Cookie enumeration

Question

A penetration tester is testing a banking application and uncovers a vulnerability. The tester is logged in as a non-privileged user who should have no access to any data. Given the data below from the web interception proxy:  Which of the following types of vulnerabilities is being exploited?
A) Forced browsing vulnerability 
B) Parameter pollution vulnerability 
C) File upload vulnerability 
D) Cookie enumeration

Quizplus · Accepted Answer

The Answer of A penetration tester is testing a banking application and uncovers a vulnerability. The tester is logged in as a non-privileged user who should have no access to any data. Given the data below from the web interception proxy:  Which of the following types of vulnerabilities is being exploited?
A) Forced browsing vulnerability 
B) Parameter pollution vulnerability 
C) File upload vulnerability 
D) Cookie enumeration

A Penetration Tester Is Testing a Banking Application and Uncovers