The following script shows a simple SQL injection The script builds an SQL

The following script shows a simple sql injection the

This preview shows page 11 - 13 out of 22 pages.

QUESTION 20 The following script shows a simple SQL injection. The script builds an SQL query by concatenating hard-coded strings together with a string entered by the user: The user is prompted to enter the name of a city on a Web form. If she enters Chicago, the query assembled by the script looks similar to the following: SELECT * FROM OrdersTable WHERE ShipCity = 'Chicago' How will you delete the OrdersTable from the database using SQL Injection? A.Chicago'; drop table OrdersTable -- B.Delete table'blah'; OrdersTable -- C.EXEC; SELECT * OrdersTable > DROP -- D.cmdshell'; 'del c:\sql\mydb\OrdersTable' // Correct Answer: A QUESTION 21 What are the limitations of Vulnerability scanners? (Select 2 answers) QUESTION 22 Stephanie works as senior security analyst for a manufacturing company in Detroit. Stephanie manages network security throughout the organization. Her colleague Jason told her in confidence that he was able to see confidential corporate information posted on the external website . He tries random URLs on the company's website and finds confidential information leaked over the web. Jason says this happened about a month ago. Stephanie visits the said URLs, but she finds nothing. She is very concerned about this, since someone should be held accountable if there was sensitive information posted on the website.
Image of page 11
The Latest 312-50 Exam Instant Download Free Update for 180 Days Where can Stephanie go to see past versions and pages of a website?
Image of page 12
Image of page 13

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture