Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / kerem kusmezer
Sql Injection is one of the input manipulation attacks,
which in case the sql statement is directly buildup from an
string concatanation, in which the user can change through
entry the result sql statement.
For Example:
select top 1 username from users where username
= '&txtusername.Text&'.
If the user enters the text with ' or -- he can add more
command to the outcoming sql statement and change the query
set.
| Is This Answer Correct ? | 2 Yes | 0 No |
Post New Answer View All Answers
What is the difference between ADO and ADO.Net?
How will you differentiate between ADO (ActiveX Data Object) and RDO (Remote Data Objects)?
Explain the difference between sqlcommand object and command behavior object?
What is concurrency? How will you avoid concurrency when dealing with dataset? (One user deleted one row after that another user through his dataset was trying to update same row. What will happen? How will you avoid the problem?)
What is ado.net architecture?
how we can fire event in databound coulm in datagfrid withot using button?
What is a datagridview?
What is connected architecture in ado.net?
Which is faster entity framework or ado.net?
What is the full form of ado.net?
What is the difference between statement and preparedstatement interface?
Which object is used to add relationship between two Datatables?
What is dataset and datatable in ado.net?
What is isolation?
Give an example that shows how to execute a stored procedure in ado.net?
