某个网站的登录验证的SQL查询代码为:vstrSQL = "SELECT * FROM users WHERE (name = '" + userName + "') and (pw = '"+ passWord +"');" 如果攻击者在填写用户名密码表单时恶意填入如下信息:userName = "1' OR '1'='1"; 和passWord = "1' OR '1'='1";会产生什么结果的SQL命令?
A. strSQL = “SELECT * FROM users WHERE passWord = 1”
B. strSQL = “SELECT * FROM users "
C. strSQL = “SELECT * FROM user WHERE userName = 1”
D. strSQL = “SELECT * FROM user WHEREuserName= 1or passWord = 1”
微信支付 
支付宝支付