SQL injection


Also found in: Dictionary, Wikipedia.

SQL injection

An exploit that takes advantage of database query software that does not thoroughly test the query statement for correctness. Along with cross-site scripting (see XSS), SQL injection is used by worms to break into websites and extract data or embed malicious code.
References in periodicals archive ?
But exfiltration of data is the classic SQL injection goal
DoubleGuard can detect SQL injection attacks by taking the structures of web requests and database queries without looking into the values of input parameters (i.
While SQL injection attacks have been documented since 1998, their uses have grown.
To understand SQL injection attacks in computer programs;
BROOMFIELD, Colorado, April 23, 2013 /PRNewswire/ -- Results of new remote access security research show half of companies with a remote workforce had their websites compromised in 2012, over a third had passwords hacked, and twice as many companies with remote users were victims of SQL injection attacks.
The new methodology of interpreting data revealed that SQL injection (SQLi) was the attack technique most commonly used.
The hacker collective, which calls itself "the D33Ds Company," claims it hacked into the online giant's (NASDAQ: YHOO) database by using a rather pedestrian SQL injection attack -- the kind of hack so boringly easy it's a joke among hackers and geeks due to its utter simplicity.
Imperva's Hacker Intelligence Initiative (HII) have revealed the prevalence and intensity of SQL injection attacks.
The Cloud Penetrator provides full Online Web Vulnerability Scanning and SQL Injection Cross Site Scripting to prevent hackers entering web servers and stealing data.
The developer network site was hacked using a vulnerability in the bulletin board software that allowed an SQL Injection attack, Nokia said in a statement.
Fortinet[R] has released its latest Threat Landscape report, which details data breaches and attacks such as Sony Europe being hit by another SQL injection attack, the International Monetary Fund (IMF) suffering a critical data breach, hacktivism group LulzSec's continued attack on the U.
The redirections were carried out by what is known as an SQL injection attack.