CompTIA Study Materials
CompTIA A+ CompTIA A+
CompTIA A+ 220-1101 CompTIA A+ 220-1102
CompTIA Network+ CompTIA Network+
CompTIA Network+ N10-008
CompTIA Security+ CompTIA Security+
CompTIA Security+ SY0-601 CompTIA Security+ SY0-701
CompTIA CySA+ CompTIA CySA+
CompTIA CySA+ CS0-003
CompTIA Linux+ CompTIA Linux+
CompTIA Linux+ XK0-005
CompTIA PenTest+ CompTIA PenTest+
CompTIA PenTest+ PT0-002
CompTIA Cloud+ CompTIA Cloud+
CompTIA Cloud+ CV0-003
CompTIA ITF+ CompTIA ITF+
CompTIA ITF+ FC0-U61
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-601 Practice Question

A web developer has contacted you concerning some suspicious activity reported by users on the corporate intranet site. The users have experienced unexpected behavior where their session tokens are being sent to an unknown external URL while they are logged into the intranet. What type of vulnerability is most likely being exploited in this scenario?

  • Open permissions vulnerability

  • Cross-site scripting (XSS)

  • Cross-site request forgery (CSRF)

  • SQL injection

This question is for objective:
Attacks, Threats, and Vulnerabilities
Your Score:
Attacks, Threats, and Vulnerabilities
Architecture and Design
Implementation
Operations and Incident Response
Governance, Risk, and Compliance
Wipe Score
SAVE $49
CompTIA Security+ Voucher (SY0-601)
$404.00 $355.00