In a parameterized query, what does a parameter represent?

  • A column name in a database table
  • A predefined SQL command
  • A stored procedure
  • A value that is provided by the user at runtime
In a parameterized query, a parameter represents a value that is provided by the user at runtime. This allows for dynamic input while still preventing SQL injection attacks by separating the data from the SQL command. Parameters are placeholders that are replaced with user-supplied values when the query is executed, thereby reducing the risk of malicious input altering the query's behavior.
Add your answer
Loading...

Leave a comment

Your email address will not be published. Required fields are marked *