Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / reva ram sahu
SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.
| Is This Answer Correct ? | 6 Yes | 1 No |
Post New Answer View All Answers
What is reportserver and reportservertempdb ?
role of sql sever 2005 in database rather than any other database
Why can there be only one clustered index and not more than one?
Explain about remote stored procedure?
What is left outer join in sql server joins?
How to create view in stored procedure sql server?
What is difference between count (*) and count 1?
Which sql server is best?
How to insert data with null values?
What is impersonation? What are the different impersonation options available in ssas? : sql server analysis services, ssas
What is mapping schema?
What is temporal table?
What is the difference between web edition and business edition?
What is indexing in sql server with example?
How you provide security to cube? : sql server analysis services, ssas
