Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / reva ram sahu
SQL Injection happens when a developer accepts user input
that is directly placed into a SQL Statement and doesn't
properly filter out dangerous characters. This can allow an
attacker to not only steal data from your database, but also
modify and delete it. Certain SQL Servers such as Microsoft
SQL Server contain Stored and Extended Procedures (database
server functions). If an attacker can obtain access to these
Procedures it may be possible to compromise the entire
machine. Attackers commonly insert single qoutes into a
URL's query string, or into a forms input field to test for
SQL Injection. If an attacker receives an error message like
the one below there is a good chance that the application is
vulnerable to SQL Injection.
| Is This Answer Correct ? | 6 Yes | 1 No |
Post New Answer View All Answers
What are “unrepeatable reads”?
What does REVERT do in SQL Server 2005?
Suppose you want to implement the one-to-many relationships while designing tables. How would you do it?
What is the default Port No on which SQL Server listens?
How can delete duplicate records in cte in sql server?
Can two tables have the same primary key?
What is a cache in ssrs?
Explain the dirty pages?
What do you mean by an execution plan?
How to insert new line characters into strings?
What does set rowcount do?
What is the server name for sql management studio?
What are horizontal and vertical scaling?
Does windows server 2016 come with sql server?
What is isnull() operator?
