If an attacker uses the command SELECT*FROM user WHERE name = ‘x’ AND userid IS NULL; -‘; which type of SQL injection attack is the attacker performing?

Posted by: Pdfprep Category: CPEH-001 Tags: CPEH-001 exam questions, CPEH-001 practice exam, CPEH Certification Post Date: December 4, 2020

If an attacker uses the command SELECT*FROM user WHERE name = ‘x’ AND userid IS NULL; –‘; which type of SQL injection attack is the attacker performing?
A . End of Line Comment
B . UNION SQL Injection
C . Illegal/Logically Incorrect Query
D . Tautology

Answer: D

If an attacker uses the command SELECT*FROM user WHERE name = ‘x’ AND userid IS NULL; –‘; which type of SQL injection attack is the attacker performing?

Author