Answer / reva ram sahu

SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.

Answer / a

It's a secuity vulnerability that occurs between the
database layer of an application.

why would you use sql agent? : Sql server database administration

0 Answers  

---

How to get nth highest salary from employee table.

0 Answers  

---

There is a trigger defined for INSERT operations on a table, in an OLTP system. The trigger is written to instantiate a COM object and pass the newly insterted rows to it for some custom processing. What do you think of this implementation? Can this be implemented better?

1 Answers   HCL,

---

What is the difference between ‘having’ clause and a ‘where’ clause?

0 Answers  

---

How to write an inner join with the where clause in ms sql server?

0 Answers  

---

how to rename the table

3 Answers  

---

When would you prefer to have a minimum number of indexes?

0 Answers  

---

What is the default server name for sql server?

0 Answers  

---

Find first and last day of current month in sql server

0 Answers  

---

what is procedure in sql?

2 Answers   Millennium, SQL,

---

What is data integrity? Explain constraints?

1 Answers   Thinksoft,

---

What is the default schema of your login session in ms sql server?

0 Answers  

---