nerdexam
EC-Council

312-50V9 · Question #5

What is the best description of SQL Injection?

The correct answer is A. It is an attack used to gain unauthorized access to a database.. SQL injection is a code injection technique, used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker). https://en.wikipedia.org/wiki/SQL_injection

SQL Injection

Question

What is the best description of SQL Injection?

Options

  • AIt is an attack used to gain unauthorized access to a database.
  • BIt is an attack used to modify code in an application.
  • CIt is a Man-in-the-Middle attack between your SQL Server and Web App Server.
  • DIt is a Denial of Service Attack.

How the community answered

(18 responses)
  • A
    89% (16)
  • B
    6% (1)
  • C
    6% (1)

Explanation

SQL injection is a code injection technique, used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution (e.g. to dump the database contents to the attacker). https://en.wikipedia.org/wiki/SQL_injection

Topics

#SQL injection#database attack#unauthorized access#definition

Community Discussion

No community discussion yet for this question.

Full 312-50V9 Practice