Notifications
Clear all
Topic starter
An analyst has received a notification about potential malicious activity against a web server.
The analyst logs in to a central log collection server and runs the following command:
“cat access.log.1 | grep “union”.
The output shown below appears:
<68.71.54.117> C C [31/Jan/2020:10:02:31 C0400] “Get /cgi-bin/backend1.sh?id=%20union%20select%20192.168.60.50 HTTP/1.1”
Which of the following attacks has occurred on the server?
- A . Cross-site request forgery
B. SQL injection
C. Cross-site scripting
D. Directory traversal
Suggested Answer: C
Posted : 11/11/2022 2:07 pm