Free CompTIA PenTest+ PT0-002 Practice Question

Verbose error messages with stack traces can lead to information disclosure vulnerabilities. These detailed errors can provide an attacker with insights about the application's structure, backend technology, or potentially sensitive information in the stack trace which could facilitate further attacks. Incorrect options such as 'Buffer overflow' and 'SQL injection' are specific types of attacks that might be discovered through other means but are not directly associated with the presence of verbose error messages. 'Input validation' is not a vulnerability but a security measure to prevent vulnerabilities, thus it is also incorrect in this context.