CEH Web Application and Injection Attacks • Set 3
CEH Web Application and Injection Attacks Practice Test 3 — 15 questions with explanations. Free, no signup.
A security analyst notices that after submitting a form on a web application, the URL changes to include the user's ID parameter, e.g., 'user?id=123'. The analyst modifies the ID in the URL and accesses another user's profile without authorization. Which type of vulnerability is being exploited?