ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v13 All Questions

View all questions & answers for the 312-50v13 exam
Go to Exam

Exam 312-50v13 topic 1 question 136 discussion

Actual exam question from ECCouncil's 312-50v13
Question #: 136
Topic #: 1
[All 312-50v13 Questions]

You're the security manager for a tech company that uses a database to store sensitive customer data. You have implemented countermeasures against SQL injection attacks. Recently, you noticed some suspicious activities and suspect an attacker is using SQL injection techniques. The attacker is believed to use different forms of payloads in his SQL queries. In the case of a successful SQL injection attack, which of the following payloads would have the most significant impact?

  • A. UNION SELECT NULL, NULL, NULL -- : This payload manipulates the UNION SQL operator, enabling the attacker to retrieve data from different database tables
  • B. ' OR username LIKE '%': This payload uses the LIKE operator to search for a specific pattern in a column
  • C. ' OR '1'='l: This payload manipulates the WHERE clause of an SQL statement, allowing the attacker to view unauthorized data
  • D. ' OR 'a'='a; DROP TABLE members; --: This payload combines the manipulation of the WHERE clause with a destructive action, causing data loss
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by NikoTomas at March 15, 2025, 9:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
killwitch
1 month ago
Selected Answer: D
Among the given options, the most destructive SQL injection payload is option D, as it not only bypasses authentication but also executes a DROP TABLE statement, which results in permanent data loss by deleting an entire database table.
upvoted 1 times
...
Gibsomd
1 month ago
Selected Answer: A
This payload leverages the UNION SQL operator to combine the results of one query with another. Attackers use UNION-based SQL Injection to extract data from other tables within the database by ensuring that the number of selected columns matches the original query.
upvoted 1 times
...
NikoTomas
1 month ago
Selected Answer: D
which of the following payloads would have the most significant impact? --> D) DROP table, which deletes entire database, so it makes the most significant impact.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago