Answer / reva ram sahu

SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.

Answer / a

It's a secuity vulnerability that occurs between the
database layer of an application.

What is the difference between clustered index and primary key?

0 Answers  

---

How to see existing views in ms sql server?

0 Answers  

---

Is it possible to create tables in stored procedures using a variable for the table name?

2 Answers  

---

What is the difference between constraints and triggers?

9 Answers   Wipro,

---

can any one please send sql quries most used in applications.

2 Answers  

---

---

what is the difference between group and having give an example with query and sample output

7 Answers  

---

Can sql servers link to other servers?

0 Answers  

---

What is the difference between push and pull subscription? : sql server replication

0 Answers  

---

How do you optimize Sql queries ?

0 Answers   Cognizant,

---

What are the fixed server level roles? : sql server security

0 Answers  

---

How to convert numeric values to integers in ms sql server?

0 Answers  

---

If there is failure during updation of certain rows, what will be the state?

2 Answers  

---