Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / p.ramakrishna
An SQL injection attack "injects" or manipulates SQL code
by adding unexpected SQL to a query.
Many web pages take parameters from web user, and make SQL
query to the database. Take for instance when a user login,
web page that user name and password and make SQL query to
the database to check if a user has valid name and password.
Username: ' or 1=1 ---
Password: [Empty]
This would execute the following query against the users
table:
select count(*) from users where userName='' or 1=1 --' and
userPass=''
| Is This Answer Correct ? | 5 Yes | 1 No |
Post New Answer View All Answers
Explain what does mvc represent in asp.net? : asp.net mvc
Explain how to prepare culture-specific formatting in .net.
What is the maximum timeout we can set for Cookies?
What are the Difference between asp.net and asp ?
Explain method to handle error using HttpError in Web API?
How can we prevent browser from caching an aspx page?
What is the difference between application state and caching?
What is use of Master Page in ASP.NET web pages?
What do you mean by query string?
What is a uri query?
How can we identify that the Page is Post Back?
What is simple data binding?
What is IPostBack? How to use it?
a)COM Callable Wrapper b)Runtime Callable Which one of the above is Win32 API in .Net?
What is the importance of Global.asax in ASP.NET?
