Quiz for Queries Statement, PreparedStatement

Q1: Which is better for executing the same query multiple times?

A. Statement B. PreparedStatement C. ResultSet D. Connection

Q2: Which interface is used to execute static SQL queries in JDBC?

A. Connection B. Statement C. ResultSet D. CallableStatement

Q3: Which JDBC interface is recommended for executing parameterized queries?

A. Statement B. PreparedStatement C. CallableStatement D. ResultSet

Q4: Which method is used to execute SELECT queries in PreparedStatement?

A. executeUpdate() B. executeQuery() C. execute() D. runQuery()

Q5: Which method is used to insert data using PreparedStatement?

A. executeInsert() B. executeUpdate() C. addRow() D. executeAdd()

Q6: PreparedStatement helps prevent which type of attack?

A. DDoS attack B. SQL injection C. Man-in-the-middle D. Cross-site scripting

Q7: Which method sets a string value in a PreparedStatement?

A. setText() B. setString() C. setChar() D. setObject()

Q8: Which method prepares a PreparedStatement object?

A. Connection.getStatement() B. Connection.prepareStatement() C. Statement.prepareQuery() D. Query.prepare()

Q9: Which is true about Statement and PreparedStatement?

A. Both support parameter binding B. PreparedStatement supports parameters, Statement doesn't C. Only Statement can execute queries D. Only PreparedStatement returns ResultSet

Q10: PreparedStatement improves performance by:

A. Reducing network traffic B. Precompiling SQL C. Increasing bandwidth D. Caching data

Q11: Which symbol is used as a placeholder in PreparedStatement?

A. # B. ? C. $ D. *

Q12: Which statement is safer for user inputs?

A. Statement B. PreparedStatement C. Raw query D. Stored Procedure

Q13: How is SQL query executed using PreparedStatement?

A. prepare() B. executeQuery() or executeUpdate() C. runQuery() D. executeSql()

Q14: What will happen if a placeholder isn't set in PreparedStatement?

A. It works B. SQLException is thrown C. It returns null D. It skips the query

Q15: What is returned by executeQuery()?

A. int B. ResultSet C. boolean D. void

Q16: Which is correct for binding an integer in PreparedStatement?

A. setInt(1, "10") B. setInteger(1, 10) C. setInt(1, 10) D. setNumber(1, 10)

Q17: To avoid SQL injection, we should use:

A. Statement B. PreparedStatement C. String concatenation D. execute() method

Q18: Which method is used to bind a double value?

A. setDecimal() B. setDouble() C. setFloat() D. setReal()

Q19: Which method is used to close PreparedStatement?

A. finish() B. destroy() C. close() D. terminate()

Q20: PreparedStatement is a subinterface of which interface?

A. Connection B. ResultSet C. Statement D. CallableStatement