Exam PT0-003 Topic 4 Question 247 Discussion
Actual exam question for CompTIA's PT0-003 exam
Question #: 247
Topic #: 4
Question #: 247
Topic #: 4
A penetration tester observes an application enforcing strict access controls. Which of the following would allow the tester to bypass these controls and successfully access the organization's sensitive files?
Suggested Answer: D Vote an answer
Insecure Direct Object References (IDOR) vulnerabilities occur when an application provides direct access to objects based on user-supplied input. This can allow an attacker to bypass authorization and access resources in the system directly, for example database records or files1. In this case, the penetration tester could potentially bypass the strict access controls and access the organization's sensitive files. References: IDOR Vulnerability Overview
by Madge at Jan 01, 2026, 02:17 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).