what is meant by sql injection with example and one more
question how to catch the errors in sqlserver
Answers were Sorted based on User's Feedback
Answer / sudheer
sql injection attacks are used to steal information from a
database from which normally not be available and /or to
gain access to an organaization 's host computers through
the computer that is hosting the database.
EXAMPLE:
select email,pwd,login_id,fullname from members where
email='x'
Now somebody does not put 'x' as the input but
puts 'x ;drop table members;' so the actual sql wich will
execute is
select email,pwd,login_id,fullname from members where
email=x;drop table members;
Think once what happens to ur database.
Is This Answer Correct ? | 8 Yes | 0 No |
Answer / kanan
how to catch the errors in sqlserver?
BEGIN TRY
SELECT 1/0
END TRY
BEGIN CATCH
RETURN ERROR_NUMBER()
RETURN ERROR_MESSAGE()
RETURN ERROR_LINE()
END CATCH
Is This Answer Correct ? | 6 Yes | 0 No |
what is the sql equivaent of the dataset relation object ?
What is the meaning of resultset type_scroll_insensitive?
how to avoid cursors? : Sql server database administration
can we call stored Procedure in Function in Sql Server 2000 and vice versa.
3 Answers C3I, eSoft, iPRO Solutions, Wipro,
Define left outer join?
What is ssl in sql server?
What is the bookmark lookup and rid lookup?
What is ms sql server index?
What is filtered index?
What is the library index called?
what is the maximum size of a row in sql server 2000 and 2005
What is difference between stored procedure and function?