nerdexam
EC-Council

312-50V10 · Question #244

What is the best description of SQL Injection?

The correct answer is A. It is an attack used to gain unauthorized access to a database.. SQL injection is a code injection technique, used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker). https://en.wikipedia.org/wiki/SQL_injection

SQL Injection

Question

What is the best description of SQL Injection?

Options

  • AIt is an attack used to gain unauthorized access to a database.
  • BIt is an attack used to modify code in an application.
  • CIt is a Man-in-the-Middle attack between your SQL Server and Web App Server.
  • DIt is a Denial of Service Attack.

How the community answered

(21 responses)
  • A
    90% (19)
  • B
    5% (1)
  • C
    5% (1)

Explanation

SQL injection is a code injection technique, used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker). https://en.wikipedia.org/wiki/SQL_injection

Topics

#SQL injection#unauthorized database access#attack definition#web security

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice