Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / p.ramakrishna
An SQL injection attack "injects" or manipulates SQL code
by adding unexpected SQL to a query.
Many web pages take parameters from web user, and make SQL
query to the database. Take for instance when a user login,
web page that user name and password and make SQL query to
the database to check if a user has valid name and password.
Username: ' or 1=1 ---
Password: [Empty]
This would execute the following query against the users
table:
select count(*) from users where userName='' or 1=1 --' and
userPass=''
| Is This Answer Correct ? | 5 Yes | 1 No |
Post New Answer View All Answers
What is difference between abstract class and an interface?
Explain the difference between debug.write and trace.write?
What is an imagemap in asp.net?
Explain managed code an un-managed code.
What is the difference between session object and application object?
What are the different types of sessions in asp.net? Name them?
What do you mean by View State and what is its role?
Explain what is an abstract class?
Describe the differences between the lifecycles of Windows services and Standard EXE?
What is skin in asp.net?
Is it possible to migrate visual interdev design-time controls to asp.net?
Diff between web user control and web custom control?
We Only Know The Total Number Of Feet In The Farmyard. Write A Program that will compute the total number of rabbits and chickens in the farmyard. Assume number of feet in the farmyard are 40. how many rabbits and chickens are?
How can i explain my project during interview?many time i expalain my project but they did't accept? please explain me.
What is the asp.net control toolkit?
