Figure 5 Explain why the code given in Figure 5 above , is vulnerable to SQL Injection and cross-site scripting attacks. Give an example scenario

Figure 5

$servername = "localhost";

$username = "me";

$password = "!myPa$$";

$dbname = "mydb";

if(isset($_POST["uname"], $_POST["upass"])) {

$conn = new mysqli($servername, $username, $password, $dbname);

if (!$conn->connect_error) {

die("Connection failed: " . $conn->connect_error);

}

$query = "select * from user where uname='$_POST[uname]' AND upass='$_POST[upass]'";

$result = $conn->query($query);

}

?>

Explain why the code given in Figure 5 above, is vulnerable to SQL Injection and cross-site scripting attacks.

Give an example scenario to demonstrate your analysis in the previous question.