No Result
View All Result
IT Quesion Library
Contribute
No Result
View All Result
No Result
View All Result

Suppose that you test an application for the SQL injection vulnerability. Which of the following SQL commands are you expecting to be executed by the server

QuestionsCategory: 312-50v12Suppose that you test an application for the SQL injection vulnerability. Which of the following SQL commands are you expecting to be executed by the server
0 Vote Up Vote Down
Admin Staff asked 1 year ago 
Suppose that you test an application for the SQL injection vulnerability. You know that the backend database is based on Microsoft SQL Server. In the login/password form, you enter the following credentials:

Based on the above credentials, which of the following SQL commands are you expecting to be executed by the server, if there is indeed an SQL injection vulnerability?

A. select * from Users where UserName = `attack' ' or 1=1 -- and UserPassword = `123456'

B. select * from Users where UserName = `attack' or 1=1 -- and UserPassword = `123456'

C. select * from Users where UserName = `attack or 1=1 -- and UserPassword = `123456'

D. select * from Users where UserName = `attack' or 1=1 --' and UserPassword = `123456'










Correct Answer: A

This question is in 312-50v12 exam
For getting CEH Certificate

Next Post

Fortinet NSE 4 - FortiOS 7.2 certificate

AWS Certified Cloud Practitioner Certificate

Cisco Certified DevNet Associate Certificate

Related Questions

Recommended

No Result
View All Result

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In