Question:Which of the following statements are true about SQL injection attacks? 

A Wrapping all variables containing user input by a call to mysql_real_escape_string() makes the code immune to SQL injections. 
B Parametrized queries do not make code less vulnearable to SQL injections. 
C SQL injections are not possible, if only emulated prepared statements are used. 
D Usage of later versions of MySQL, validation, and explicit setting of the charset of user input are valid measures to decrease vulnerability to SQL injections. 

+ Answer
A 

+ Report

Mohammad Towhidul Islam

Editor, VCampus

Your Name

Your Email

Type of Report
Spelling MistakeIncorrect AnswerGrammar MistakeContent MissingImproper Text FormatInsufficient AnswerDuplicate QuestionImproper Sentence StructureImproper Equation/FormulaOther

Description