Ask a Question

Which of the stored procedure used for dynamic SQL is prone to attacks?

← Prev Question Next Question →
+2 votes
397 views
in SQL Server by (80.5k points)
Which of the stored procedure used for dynamic SQL is prone to attacks?

(a) xp_executesql

(b) executesql

(c) sp_execute

(d) sp_executesql

I had been asked this question during an internship interview.

Enquiry is from Dynamic SQL in section Developing with SQL Server of SQL Server

1 Answer

+1 vote
by (277k points)
selected by
 
Best answer
Correct answer is (d) sp_executesql

The explanation is: sp_executesql executes a Transact-SQL statement or batch that can be reused many times or one that has been built dynamically. Run time-compiled Transact-SQL statements can expose applications to malicious attacks.

Related questions

+1 vote
1 answer
Point out the wrong statement.
asked Jul 27, 2021 in SQL Server by Emma (80.5k points)
+1 vote
1 answer
Point out the correct statement.
asked Jul 27, 2021 in SQL Server by Emma (80.5k points)
Welcome to TalkJarvis QnA, a question-answer community website for the people by the people. On TalkJarvis QnA you can ask your doubts, curiosity, questions and whatever going in your mind either related to studies or others. Experts and people from different fields will answer.

Most popular tags

biology – class 12 biology – class 11 construction & building materials chemistry – class 12 electronic devices & circuits network theory data structures & algorithms ii cell biology ic engine insurance finance money computational fluid dynamics engineering physics i discrete mathematics chemistry – class 11 aerodynamics casting-forming-welding i engineering mathematics operating system casting-forming-welding ii engineering drawing mysql engineering geology digital circuits wireless mobile energy management electrical measurements digital communications cyber security analytical instrumentation embedded systems electric drives cytogenetics advanced machining computer fundamentals life sciences basic civil engineering iot design of electrical machines physics – class 12 applied chemistry dairy engineering basic chemical engineering cloud computing microprocessor bioinformatics aircraft design aircraft maintenance software engineering drug biotechnology digital signal processing biochemistry data structures & algorithms i automotive engine design avionics engineering material & metallurgy energy engineering cognitive radio unix electrical machines biomedical instrumentation object oriented programming electromagnetic theory power electronics analog communications bioprocess engineering civil engineering drawing engineering metrology physics – class 11 mathematics – class 12 engineering chemistry i basic electrical engineering unit processes mongodb signals and systems cryptograph & network security hadoop mathematics – class 11 engineering physics ii html control systems engineering mechanics antennas analog circuits computer network java sql server javascript concrete technology chemical process calculation artificial intelligence design of steel structures c++ database management computer architecture engineering chemistry ii corrosion engineering chemical technology dc machines
Powered by TalkJarvis
...