MCQOPTIONS

Explore topic-wise MCQs in Structured Query Language (SQL).

This section includes 4 Mcqs, each offering curated multiple-choice questions to sharpen your Structured Query Language (SQL) knowledge and support exam preparation. Choose a topic below to get started.

1.	IF_XP_CMDSHELL_HAS_BEEN_DISABLED_WITH_SP_DROPEXTENDEDPROC,_WE_CAN_SIMPLY_INJECT_THE_FOLLOWING_CODE:?$
A.	sp_addextendedproc ‚Äö√Ñ√∂‚àö√ë‚àö‚â§xp_cmdshell‚Äö√Ñ√∂‚àö√ë‚àö¬•,‚Äö√Ñ√∂‚àö√ë‚àö¬•xp_log70.dll‚Äö√Ñ√∂‚àö√ë‚àö¬•
B.	sp_addproc ‚Äö√Ñ√∂‚àö√ë‚àö‚â§xp_cmdshell‚Äö√Ñ√∂‚àö√ë‚àö¬•,‚Äö√Ñ√∂‚àö√ë‚àö¬•xp_log70.dll‚Äö√Ñ√∂‚àö√ë‚àö¬•
C.	sp_addextendedproc ‚Äö√Ñ√∂‚àö√ë‚àö‚â§xp_cmdshell‚Äö√Ñ√∂‚àö√ë‚àö¬•,‚Äö√Ñ√∂‚àö√ë‚àö¬•log70.dll‚Äö√Ñ√∂‚àö√ë‚àö¬•
D.	None of the mentioned
Answer» D. None of the mentioned

2.	Which of the stored procedure is used to test SQL injection attack ?
A.	xp_write
B.	xp_regwrite
C.	xp_reg
D.	All of the mentioned
Answer» C. xp_reg

3.	Any user-controlled parameter that gets processed by the application includes vulnerabilities like :
A.	Host-related information
B.	Browser-related information
C.	Application parameters included as part of the body of a POST request
D.	All of the mentioned
Answer» B. Browser-related information

4.	SQL injection is an attack in which _________ code is inserted into strings that are later passed to an instance of SQL Server.
A.	malicious
B.	redundant
C.	clean
D.	non malicious
Answer» B. redundant