CYS Short paper M3.7
Introduction
Validating the entry points of a website is essential, as invalidated input can result in a number of security threats. In this activity, you will analyze one such threat caused by improper input validation.
Instructions
Please address the following in a 1-2 page short paper. A minimum of 100 words for each answer is required.
1. State how the code below can be subjected to SQL Injection Attack to bypass the login mechanism.
try { String sql = “SELECT * FROM employee WHERE username = ‘” + username.text + “‘ AND password = ‘” + pwd.text+ “‘”; Statement stmt = con.createStatement(); ResultSet rs = stmt.executeQuery(sql); }
The set of statements above are used for authenticating the user during the login process.
2. Analyze the following SQL statement and state how the hacker can manipulate the given query to access confidential information from the website, such as users details (username, password, credit card details, etc.) from a simple select statement commonly used in the website search text box.
Search for products text box
Select * from items where item_name Like itemTextbox.text;
Evaluation
This assignment is due Sunday by 11:59 PM ET. Short Papers are worth 35% of your final grade and are assessed using the Short Paper Rubric
Collepals.com Plagiarism Free Papers
Are you looking for custom essay writing service or even dissertation writing services? Just request for our write my paper service, and we'll match you with the best essay writer in your subject! With an exceptional team of professional academic experts in a wide range of subjects, we can guarantee you an unrivaled quality of custom-written papers.
Get ZERO PLAGIARISM, HUMAN WRITTEN ESSAYS
Why Hire Collepals.com writers to do your paper?
Quality- We are experienced and have access to ample research materials.
We write plagiarism Free Content
Confidential- We never share or sell your personal information to third parties.
Support-Chat with us today! We are always waiting to answer all your questions.