CompTIA Security Exam Practice Questions Sample SY0 501 Q143

A security analyst receives an alert from a WAF with the following payload:
var data= “” ++ <../../../../../../etc/passwd>”
Which of the following types of attacks is this?

A. Cross-site request forgery
B. Buffer overflow
C. SQL injection
D. JavaScript data insertion
E. Firewall evasion scipt

Correct Answer: D