Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / reva ram sahu
SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.
| Is This Answer Correct ? | 6 Yes | 1 No |
Post New Answer View All Answers
How will you monitor replication latency in transactional replication? : sql server replication
what is database replicaion? : Sql server database administration
What are logical/boolean operations in ms sql server?
How to fine-tune reports?
What are triggers? How do you invoke a trigger on demand?
How many database files are there in sql server 2000?what are they?
Name 3 ways to get an accurate count of the number of records in a table?
Explain the difference between cross join and full outer join?
Introduction of rollup clause using sum and group by clause?
Differentiate between sql temp table vs table variable?
How to list all schemas in a database?
What's the information that can be stored inside a bit column?
What happens if the update subquery returns multiple rows in ms sql server?
Explain the concept of view and Types of views in SQL server?
Does table partitioning improve performance?
