EC-Council
412-79V9 · Question #93
412-79V9 Question #93: Real Exam Question with Answer & Explanation
Sign in or unlock 412-79V9 to reveal the answer and full explanation for question #93. The question stem and answer options stay visible for context.
Question
A Blind SQL injection is a type of SQL injection attack that asks the database true or false questions and determines the answer based on the application response. This attack is often used when the web application is configured to show generic error messages, but has not mitigated the code that is vulnerable to SQL injection. It is performed when an error message is not received from application while trying to exploit SQL vulnerabilities. The developer's specific message is displayed instead of an error message. So it is quite difficult to find SQL vulnerability in such cases. A pen tester is trying to extract the database name by using a blind SQL injection. He tests the database using the below query and finally finds the database name.
What is the database name?
Options
- AWXYZ
- BPHJG
- CCFGH
- DABCD
Unlock 412-79V9 to see the answer
You've previewed enough free 412-79V9 questions. Unlock 412-79V9 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.