what is meant by sql injection with example and one more
question how to catch the errors in sqlserver




Answers were Sorted based on User's Feedback



what is meant by sql injection with example and one more question how to catch the errors in sqlse..

Answer / sudheer

sql injection attacks are used to steal information from a
database from which normally not be available and /or to
gain access to an organaization 's host computers through
the computer that is hosting the database.
EXAMPLE:
select email,pwd,login_id,fullname from members where
email='x'

Now somebody does not put 'x' as the input but
puts 'x ;drop table members;' so the actual sql wich will
execute is
select email,pwd,login_id,fullname from members where
email=x;drop table members;
Think once what happens to ur database.

Is This Answer Correct ?    8 Yes 0 No

what is meant by sql injection with example and one more question how to catch the errors in sqlse..

Answer / kanan

how to catch the errors in sqlserver?

BEGIN TRY
SELECT 1/0
END TRY

BEGIN CATCH
RETURN ERROR_NUMBER()
RETURN ERROR_MESSAGE()
RETURN ERROR_LINE()
END CATCH

Is This Answer Correct ?    6 Yes 0 No

Post New Answer




More SQL Server Interview Questions

How many types of indexes are there in SQL Server?

6 Answers   United Healthcare, CarrizalSoft Technologies,


How many jobs will create for Mirroring, Log Shipping, and Transactional Replication?

4 Answers   IBM,


how can we know that how many users are connected in perticuler server??????

2 Answers  


How to delete particular value in the column of a table.Is it possible or not?if possible give it as in query.

8 Answers   Intelenet,


What are the difference between data length and length in SQL Server-2008?

3 Answers   Scio Healthcare,






does physical index sort data

1 Answers  


i have made a project i vb.net n created a .exe of it after installing it in to any pc, the database (sql express) is not geting accesed i.e the aplication cuts the link of the database, so plz help in this matter.

0 Answers  


what is package configuration variable?How to change file name in folder dynamically?Plz help me

1 Answers  


What is a transaction and what are ACID properties?

3 Answers  


diffrence between Cluster Index and non Cluster Index

3 Answers   Wipro,


What are the steps you will take to improve performance of a poor performing query?

1 Answers   HCL,


I am having table Title with TITLE id,Author ID, Publiser ID , table AUTHOR with Author ID, Author Name, table PUBLISER with Pub ID, Pub name Here hot to find out the publiser id who have relesed the books of patriticular author?

3 Answers  






Categories