Date Added: Jul 2012
This paper gives an overview to the SQL Injection Attacks (SQLIA) and methods to prevent them; the authors will discuss all the proposed models to block SQL Injections. They also describes the technique to prevent injections attacks occurring due to dynamic SQL statements in database stored procedures, which are often used in e-commerce applications. As they know that SQL injection attack can be easily prevented by applying more secure scheme in login phase. To address this problem, they studied and present here an overview of the different types of attacks with descriptions and examples of how attacks of that type could be performed and their detection & prevention schemes. This paper also contains strengths and weaknesses of various SQL injection attacks.