SQL injection

(redirected from SQL injection attack)

SQL injection

An exploit that takes advantage of database query software that does not thoroughly test the query statement for correctness. Along with cross-site scripting (see XSS), SQL injection is used to break into websites and extract data or embed malicious code. See buffer overflow.
Copyright © 1981-2019 by The Computer Language Company Inc. All Rights reserved. THIS DEFINITION IS FOR PERSONAL USE ONLY. All other reproduction is strictly prohibited without permission from the publisher.
Mentioned in ?
References in periodicals archive ?
As a result of these pitfalls, a Naive bayes based pattern recognition model is proposed to detect SQL injection attack and categorize SQL injection attack type.
A Naive Bayes Based Pattern Recognition Model for Detection and Categorization of Structured Query Language Injection Attack
SQL injection attack is the insertion of the SQL query through the input data from a client to the application.
Detecting Cross-Site Scripting in Web Applications Using Fuzzy Inference System
SQL injection attack is one of the most prominent threats today.
A container based IDS to automatically trace the web-application related attacks
First of all, the authors implemented a module that simulated an SQL injection attack, in order to simulate the hacker's process of stealing the user's credentials and personal information from the back-end database by taking advantage of security holes in the web server.
Teaching information security with workflow technology--a case study approach
2.2 SQL Injection Vulnerability versus SQL Injection Attack
A detailed survey on various aspects of SQL injection in web applications: vulnerabilities, innovative attacks and remedies
* Detect SQL injection attack using a combination of application layer knowledge (application profile) and a preconfigured database of attack vector formats.
Imperva research finds SQL injection attacks bypass web security
The developer network site was hacked using a vulnerability in the bulletin board software that allowed an SQL Injection attack, Nokia said in a statement.
Nokia developer network hacked

Encyclopedia browser ?
Full browser ?