In a database application, a SQL query is responsible for retrieving financial transaction records. You suspect that the query might be prone to SQL injection attacks. What action should you take to verify and secure the query?

  • Implement strong encryption
  • Restrict access to the database
  • Use parameterized queries
  • Validate user input
Using parameterized queries is an effective way to prevent SQL injection attacks. Parameterized queries separate SQL code from user input, making it impossible for attackers to inject malicious SQL code into the query. This practice enhances the security of the application by ensuring that all input values are treated as data rather than executable SQL code.
Add your answer
Loading...

Leave a comment

Your email address will not be published. Required fields are marked *