Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / p.ramakrishna
An SQL injection attack "injects" or manipulates SQL code
by adding unexpected SQL to a query.
Many web pages take parameters from web user, and make SQL
query to the database. Take for instance when a user login,
web page that user name and password and make SQL query to
the database to check if a user has valid name and password.
Username: ' or 1=1 ---
Password: [Empty]
This would execute the following query against the users
table:
select count(*) from users where userName='' or 1=1 --' and
userPass=''
| Is This Answer Correct ? | 5 Yes | 1 No |
Post New Answer View All Answers
Explain the asp.net mvc folder conventions? : asp.net mvc
How do you initiate validation on the server manually? What are two situations when you might you want to do that?
How can we make sure that Web API returns JSON data only?
What is session object? Describe in detail.
What is postback pixel?
Can you set which type of comparison you want to perform by the comparevalidator control?
Difference between application events and session events
What are html helpers in asp.net?
Which is better viewstate or session?
What is cross page posting in asp net?
Explain the Order of events in an asp.net page?
Define static function?
What is validation in asp.net?
5. What three Specific Job Positions do you target from Swatz Oils GROUP U.K?
What's the ASP.Net Application life cycle?
