Interested to Buy Any Domain ? << Click Here >> for more details...
Answer Posted / p.ramakrishna
An SQL injection attack "injects" or manipulates SQL code
by adding unexpected SQL to a query.
Many web pages take parameters from web user, and make SQL
query to the database. Take for instance when a user login,
web page that user name and password and make SQL query to
the database to check if a user has valid name and password.
Username: ' or 1=1 ---
Password: [Empty]
This would execute the following query against the users
table:
select count(*) from users where userName='' or 1=1 --' and
userPass=''
| Is This Answer Correct ? | 5 Yes | 1 No |
Post New Answer View All Answers
What are the different types of sessions in asp.net?
How do you implement sql caching in asp.net?
what are the ihttphandler and ihttphandlerfactory interfaces ?
Explain the namespace classes used in asp.net mvc? : asp.net mvc
What is form method?
How you can access the properties and controls of master pages from content pages?
Out of ASP or ASP.NET which one is stateless?
What is the displayafter property in updateprogress control?
What is enableviewstate?
Describe the .net base class library.
What’s the catch?
How to implement role based security in asp.net mvc? : Asp.Net MVC
In a Repeater control how one can provide an alternating color scheme ?
What are the media types of http requests and response?
How u refer webservices?
