While evaluating a potential security incident, Leonidas comes across a log entry from a web server request showing that a user entered the following input into a form field: CARROT'&1=1;-- What type of attack was attempted?

The single quotation mark in the input field is a telltale sign that this is a SQL injection attack. The single quotation mark is used to escape outside the SQL code's input field, and the text following it is used to directly manipulate the SQL command sent from the web application to the database.