Bird
0
0

Given the vulnerable query:

medium📝 query result Q13 of 15
SQL - Security Basics
Given the vulnerable query:
SELECT * FROM users WHERE username = '" + userInput + "';
If userInput is admin' OR '1'='1, what will the query become and what is the likely result?
ASyntax error due to unmatched quotes
BSELECT * FROM users WHERE username = 'admin OR 1=1'; -- Returns no users
CSELECT * FROM users WHERE username = 'admin'; -- Returns only admin user
DSELECT * FROM users WHERE username = 'admin' OR '1'='1'; -- Returns all users
Step-by-Step Solution
Solution:

  1. Step 1: Substitute userInput into the query

    The query becomes: SELECT * FROM users WHERE username = 'admin' OR '1'='1';

  2. Step 2: Understand the effect of OR '1'='1'

    The condition '1'='1' is always true, so the WHERE clause matches all rows.

  3. Final Answer:

    SELECT * FROM users WHERE username = 'admin' OR '1'='1'; -- Returns all users -> Option D

  4. Quick Check:

    Injected OR '1'='1' returns all rows [OK]
Quick Trick: OR '1'='1' always true returns all rows [OK]
Common Mistakes:
  • Thinking it causes syntax error
  • Assuming it returns only admin user
  • Misreading the injected condition

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More SQL Quizzes
Advanced Query Patterns - Conditional aggregation pattern - Quiz 10hard Advanced Query Patterns - Date range overlap detection - Quiz 13medium Advanced Query Patterns - Finding duplicates efficiently - Quiz 2easy Common Table Expressions (CTEs) - Recursive CTE concept - Quiz 2easy Database Design and Normalization - Star schema concept - Quiz 2easy Database Design and Normalization - Why normalization matters - Quiz 6medium Transactions and Data Integrity - Deadlock concept and prevention - Quiz 4medium Transactions and Data Integrity - BEGIN TRANSACTION syntax - Quiz 8hard Triggers - Trigger performance considerations - Quiz 4medium Window Functions Fundamentals - Why window functions are needed - Quiz 5medium