Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / reva ram sahu
SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.
| Is This Answer Correct ? | 6 Yes | 1 No |
Post New Answer View All Answers
What do you understand by the data quality services in sql server?
How to check what was the last restore transaction LSN in Log shipping or Mirroring? when we don't have a Monitor or witness server.
How will you know when statistics on a table are obsolete?
Name the different type of indexes in sql?
What is a periodical index?
What are different types of data sources?
Why do we use sql limitations? Which constraints can we use while making a database in sql?
What are the risks of storing a hibernate-managed object in a cache? How do you overcome the problems?
What does Master database contains?
Write a sql query to sort on different column name according to the parameters passed in the function?
What is the fillfactor concept in indexes?
How data can be copied from one table to another table?
How many clustered indexes there can be on table ?
Why transaction is important?
Why do you need a sql server?
