what is sql injection?
- 2 Answers
- 5361 Views
- I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / reva ram sahu
SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.
| Is This Answer Correct ? | 6 Yes | 1 No |
Answer / a
It's a secuity vulnerability that occurs between the
database layer of an application.
| Is This Answer Correct ? | 5 Yes | 1 No |
Differnce between sel server 2000 and 2005
What is thr feature of change data capture?
Show Practically Sql Server Views are updatable?
What are the tool windows in sql server management studio? : sql server management studio
How can you find out which stored procedures are recompiling?
What is normalization of database? What are its benefits?
What is nonclustered index on computed columns?
Define cross join in sql server joins?
What is the security model used in sql server 2005?
What is a group function explain with an example?
How to replace given values with null using nullif()?
Explain use of expression builder.
-
Oracle (3258) - SQL Server (4518)
- MS Access (429)
- MySQL (1402)
- Postgre (483)
- Sybase (267)
- DB Architecture (141)
- DB Administration (291)
- DB Development (113)
- SQL PLSQL (3328)
- MongoDB (502)
- IBM Informix (50)
- Neo4j (82)
- InfluxDB (0)
- Apache CouchDB (44)
- Firebird (5)
- Database Management (1411)
- Databases AllOther (288)
