2.3 Understanding Code and SQL Injection Attacks

Question 1

What is a Code Injection Attack?

Answer 1

An attacker inserts their own malicious code into an application’s input

Prevention involves implementing checks to prevent unwanted data injection. Examples include HTML, SQL, and XML injections.

Question 2

What is a SQL Injection (SQLi)?

Answer 2

A specific type of code injection where an attacker inserts their own SQL requests into queries made to a database

Exploits applications lacking proper input validation.

Question 3

How does SQL Injection exploit a vulnerability?

Answer 3

It allows the attacker to manipulate database interactions by inserting malicious SQL code into input fields

Often not difficult to exploit and can be done directly through browser input fields.

Question 4

What is Structured Query Language (SQL)?

Answer 4

The most common language for applications to interact with databases

Used for retrieving or modifying data in a database.

Question 5

What happens when an attacker injects ‘OR 1=1’ into a SQL query?

Answer 5

The database returns all records, effectively bypassing the intended filter

Since 1=1 is always true.

Question 6

Why is SQL injection considered easy to exploit?

Answer 6

It often requires no special software or user interaction; just adding code to input fields

Attackers can simply manipulate input without complex setups.

Question 7

List three actions an attacker can perform with complete control over a database gained through SQL injection.

Answer 7

• Viewing all data
• Deleting all data
• Making changes to data
• Bringing the database down (Denial of Service)

Question 8

What would be the normal SQL query sent to the database if a user inputs ‘Professor’?

Answer 8

SELECT * FROM users WHERE name = ‘Professor’

This is the standard query constructed by the application.

Question 9

What is the purpose of the ‘Webgoat’ application?

Answer 9

It is specifically written to be vulnerable to attacks like SQL injection

Designed for learning and demonstrating security vulnerabilities.

Question 10

Is additional software or user interaction typically required for a SQL injection?

Answer 10

No

Attackers can simply add their malicious code into existing input fields.

Question 11

Define Code Injection Attack.

Answer 11

A type of application attack where an attacker inserts their own malicious code into the information provided as input to an application.

Question 12

What does SQL stand for?

Answer 12

Structured Query Language.

Question 13

What is the main function of SQL?

Answer 13

To serve as the most popular way for an application to interact with a database.

Question 14

What are input fields?

Answer 14

Interactive controls in an application where users can enter data.

Question 15

What is a vulnerability?

Answer 15

A weakness or flaw in a system or application that can be exploited by an attacker.

Question 16

What does the term ‘circumventing security’ mean?

Answer 16

Bypassing or getting around established security measures or controls.

Question 17

What is an example of a SQL query?

Answer 17

SELECT * FROM users WHERE name = ‘Professor’.

Question 18

Fill in the blank: SQL Injection is a specific type of code injection attack where an attacker inserts malicious _______ into an application’s queries to a database.

Answer 18

SQL requests.

Question 19

True or False: SQL injection requires complex user interaction to exploit.

Answer 19

False.