what is meant by sql injection with example and one more
question how to catch the errors in sqlserver
Answer Posted / sudheer
sql injection attacks are used to steal information from a
database from which normally not be available and /or to
gain access to an organaization 's host computers through
the computer that is hosting the database.
EXAMPLE:
select email,pwd,login_id,fullname from members where
email='x'
Now somebody does not put 'x' as the input but
puts 'x ;drop table members;' so the actual sql wich will
execute is
select email,pwd,login_id,fullname from members where
email=x;drop table members;
Think once what happens to ur database.
Is This Answer Correct ? | 8 Yes | 0 No |
Post New Answer View All Answers
Explain what is the main purpose of having conversation group?
What is create statement?
How can we solve concurrency problems?
How to download and install microsoft .net framework version 2.0?
how do you test proper tcp/ip configuration windows machine? : Sql server database administration
What is the name of the system variable that returns the number of rows affected by a SQL statement?
What are triggers? How do you invoke a trigger on demand?
How to make remote connection in database?
What is ssl in sql server?
Which is faster statement or preparedstatement?
Can you explain different types of locks in sql server?
What are the properties of the transaction?
What is indexed view?
How can we improve performance by using SQL Server profiler?
Explain linked server in sql?