International Journal of Advanced Research in Computer Science and Software Engineering (IJARCSSE)
Huge volumes of information storage and transfer are conveniently performed through internet using web applications. The web applications are highly vulnerable to injection flaws through which the malicious user/attacker can attack a system. SQLIA is a wide spread injection attack where the malicious user finds the parameter through which he enters the database and corrupt or destroy its contents. This paper discusses about the web application architecture, probable injection vulnerabilities likely to occur in various databases. A hybrid approach to detect and prevent SQLIA is proposed. It also compares the performance with respect to response time and detection trend.