exam questions

Exam CFR-310 All Questions

View all questions & answers for the CFR-310 exam

Exam CFR-310 topic 1 question 56 discussion

Actual exam question from CertNexus's CFR-310
Question #: 56
Topic #: 1
[All CFR-310 Questions]

A company website was hacked via the following SQL query:
email, passwd, login_id, full_name

FROM members -
WHERE email = “[email protected]”; DROP TABLE members; –”
Which of the following did the hackers perform?

  • A. Cleared tracks of [email protected] entries
  • B. Deleted the entire members table
  • C. Deleted the email password and login details
  • D. Performed a cross-site scripting (XSS) attack
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
044f354
2 months, 4 weeks ago
Selected Answer: B
B. Deleted the entire members table Explanation: The SQL query contains a SQL injection attack, where the attacker inserted a malicious SQL command: DROP TABLE members;. This command is designed to delete the entire members table in the database. The injected SQL command after WHERE email = “[email protected]” includes a semicolon (;), which terminates the original query and allows the DROP TABLE command to be executed, effectively deleting the entire members table.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago