what is sql injection?
Answers were Sorted based on User's Feedback
Answer / reva ram sahu
SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.
Is This Answer Correct ? | 6 Yes | 1 No |
Answer / a
It's a secuity vulnerability that occurs between the
database layer of an application.
Is This Answer Correct ? | 5 Yes | 1 No |
how to rename the table
What is a join and their types?
2 Answers Challenger Financial,
What are the mathematical functions supported by sql server 2005?
How to get the definition of a trigger back?
Tell me what is difference between clustered and non clustered index?
How to locate and take substrings with charindex() and substring() functions?
What's the difference between DELETE TABLE and TRUNCATE TABLE commands?
What is use of attributehierarchyenabled? : sql server analysis services, ssas
Is index a datbase objects in sql server?
What is Check point? Explain in Brief what it will do?
What is constraints and its types?
What is shared lock?