Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Software >> Testing >> Manual Testing
  2. Suggest New Category

Wht is SQL injection?

Question Posted / mustafa

Answers were Sorted based on User's Feedback



Wht is SQL injection?..

Answer / sachin

"An attack technique used to exploit web sites by altering
backend SQL statements through manipulating application
input."

SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but
also modify and delete it. Certain SQL Servers such as
Microsoft SQL Server contain Stored and Extended Procedures
(database server functions). If an attacker can obtain
access to these Procedures it may be possible to compromise
the entire machine. Attackers commonly insert single qoutes
into a URL's query string, or into a forms input field to
test for SQL Injection. If an attacker receives an error
message like the one below there is a good chance that the
application is vulnerable to SQL Injection.

Is This Answer Correct ?    1 Yes 0 No

Wht is SQL injection?..

Answer / babuni

SQL injection is a technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed. It is in fact an instance of a more general class of vulnerabilities that can occur whenever one programming or scripting language is embedded inside another.

Is This Answer Correct ?    0 Yes 0 No

Wht is SQL injection?..

Answer / pravati

sql injection is an attack in which malicious code is inserted to expose hidden data or to override valuable ones.

Is This Answer Correct ?    0 Yes 0 No

Post New Answer

More Manual Testing Interview Questions

Define brain stromming and cause effect graphing?

0 Answers  

last week i attended tawant technologies. it may be useful for for u. i could not remember every qustion and answer. . 1. verfification is a. r we buliding the sys right? b. r we buliding the right sys? 2. regeression tetsing a. always can be done automation b.unchanged areas have not been affected c. changed areas have not been affected. 3.Equalent class partition is a.white box tetsing technique b.Black box tetsing technique ........ c.black box .............. 4.arrange order unit testing,integartion, validation, sys tetsting 5.debugging is a.testing activity b. developement activity c........ d......... 6.security tetsting a. bullet prooof...... wrapped s/w b....... 7.smoke testing a..... 8.defect managent tool does not conatin a. b. 9. sys reliability a. 10.user accceptance tetsing is done by a.tester b.developer c.end users d........ 11.which is not static testing technique a.walk through b.inspection c. d. 12.wat is diff b/w? if the s/w isdeveloped by other country if the s/w isdeveloped by ur country? a.culturtal diff b. re allocation resources. c...........no ctrl pf process d........ plz go through these topics.....i am not able to rememeber every qusetion and answers. sorry let me know u ahve any questions.u can add here extra questions. brahma412@yahoo.co.in

3 Answers   Tavant Technologies,

wat is ur involvement in user acceptance testing

9 Answers   Polaris,

iwant know IEEE formate ,how it is used and exactly where it is used? i have details it follows test plan, testcases...etc. i want real time explanation. pls any one give?

0 Answers  

What is mean by sdlc and expalin spiral model and proto type model?

1 Answers   CSS,

what is CMM Explain the difference between adhoc and smoke testing explain Bug life cycle Explian STLC What is severity and priority and example of highseverity and low priority

3 Answers   Cap Gemini,

How to Trace a Defect?

10 Answers   TCS,

Why do you go for White box testing, when Black box testing is available?

2 Answers  

i have 6 months experience in manual testing,if there are any openings please let me know My email id is: amitmantu20151@gmail.com

1 Answers  

why tracability matrix need in manual testing? how to create tracebility matrix for web application.. please can u send ur replies

2 Answers   SoftSquare,

How you will choose test cases for Sanity testing and at which phase of testing you will do this.

4 Answers   Flextronics,

what is gui testing? what is the most important thing we need 2 know before this and how 2 do gui testing

1 Answers   IBM,

For more Manual Testing Interview Questions Click Here
Categories