What Is SQL Injection?
Source: SecPoint
SQL injection is a technique used to take advantage of non-validated input vulnerabilities to pass SQL commands through a Web application for execution by a backend database. Attackers take advantage of the fact that programmers often chain together SQL commands with user-provided parameters, and can therefore embed SQL commands inside these parameters. The result is that the attacker can execute arbitrary SQL queries and/or commands on the backend database server through the Web application.
| Format: | Size: | 72.70 | |
| Date: | Sep 2008 |
People who downloaded this item also downloaded
- Unraveling Web Malware
- Visual-Similarity-Based Phishing Detection
- Web Application Integrity Series: SQL Injection
- Protecting Browsers From Extension Vulnerabilities
- Securing Web Applications From Common Hacking Techniques
