🔥 3-day streak
CompTIA PenTest+ (PT0-003)10 / 175
Question 10 of 175

During a web application assessment, your Burp Suite active scan flags a high-severity SQL injection vulnerability on a login form's username parameter. Before including it in your report, you want to confirm the finding is not a false positive with the least intrusive verification method. Which action best confirms the vulnerability?

Reviewed for accuracy · Report an issueNext question