SQL Injections

To dump a database of usernames and passwords

To create new user accounts

To improve website performance

To generate random passwords

The website displays a welcome message

The website connects to a database to check the credentials

The website sends an email to the user

The website logs the user out

The website was not vulnerable to SQL injection

Both the username and password were incorrect

The password was incorrect

The username was incorrect

It logs the user out

It makes the SQL statement always evaluate to true

It deletes the database

It creates a new user account

Use the same password for all accounts

Use prepared statements with parameterized queries

Ignore all user inputs

Disable the login form