An SQL injection attack "injects" or manipulates SQL code by ad

What is SQL injection?

Question Posted / p.ramakrishna

2 Answers
5916 Views
I also Faced
E-Mail Answers

Answer Posted / p.ramakrishna

An SQL injection attack "injects" or manipulates SQL code
by adding unexpected SQL to a query.
Many web pages take parameters from web user, and make SQL
query to the database. Take for instance when a user login,
web page that user name and password and make SQL query to
the database to check if a user has valid name and password.
Username: ' or 1=1 ---
Password: [Empty]
This would execute the following query against the users
table:
select count(*) from users where userName='' or 1=1 --' and
userPass=''

Is This Answer Correct ?

5 Yes

1 No

Post New Answer View All Answers

Please Help Members By Posting Answers For Below Questions

What is the full meaning of asp.net?

711

How can we use Web API with ASP.NET Web Form?

826

What is the use of express session?

741

How can we create custom controls in asp net?

755

What is mvc in asp.net interview question? : Asp.Net MVC

718

What is the difference between page.registerclientscriptblock and page.registerstartupscript?

654

What is application and session in asp.net?

710

Explain what does wsdl stand for?

735

Why is asp.net so popular?

708

What is the difference between response.redirect and server.transfer?

747

What is postback pixel?

689

What is a page life cycle?

800

What are the different types of sessions in asp.net?

695

When you are running a component within ASP.NET, what process is it running within on Windows XP? Windows 2000? Windows 2003?

789

Which is an advantage of application service providers?

678