https://xyz.com/feed.php?

Posted by: Pdfprep Category: 312-50v11 Tags: Certified Ethical Hacker (Practical), 312-50v11 exam questions, 312-50v11 practice exam Post Date: March 23, 2021

Jason, an attacker, targeted an organization to perform an attack on its Internet-facing web server with the intention of gaining access to backend servers, which are protected by a firewall. In this process, he used a URL

https://xyz.com/feed.php?url:externaIsile.com/feed/to to obtain a remote feed and altered the URL input to the local host to view all the local resources on the target server.

What is the type of attack Jason performed In the above scenario?
A . website defacement
B . Server-side request forgery (SSRF) attack
C . Web server misconfiguration
D . web cache poisoning attack

Answer: B

https://xyz.com/feed.php?

Author

Leave a Reply Cancel reply