Alibaba Cloud Certified Professional – Cloud Computing — Question 1

SQL injection is a common attack on the application layer. It builds special input as a parameter to pass into a Web application and steal or destroy the application data. Which of the followings is the target that the SQL injection eventually destroys or steals from?

Answer options

• A. Web applications
• B. Redis database
• C. Confidential files on the server
• D. Pictures on the server

Correct answer: B

Explanation

The correct answer is B, as SQL injection specifically targets databases to manipulate or retrieve sensitive information. Options A, C, and D refer to broader categories or specific files that might be affected but are not the direct targets of SQL injection attacks, which primarily focus on database systems.